Job Specifications
Senior Information Security Risk Analyst | Cyber Risk | World Renowned Arts Institution
Salary: £50,000 - £62,000
Location: London (hybrid)
Working pattern: 36 hour working week with flexible start/finish times.
Note: Visa sponsorship is not available for this role
The Role
A world-renowned arts and cultural institution is looking to hire a Cyber Risk Analyst to strengthen its information security capability during a period of ongoing technology and security maturity.
You’ll be joining a sizeable technology function operating at real scale, supporting thousands of devices, over a thousand end users, and systems critical to an organisation welcoming millions of visitors each year. This role is focused on real-world cyber risk, not box-ticking, working closely with senior security leadership to assess infrastructure, networks, systems, and third parties as they actually operate.
It’s a newly shaped role with genuine scope to influence how cyber risk is understood, assessed, and improved across the organisation.
Non-Negotiables
Security qualification such as CompTIA Security+, CISSP, CISM, CEH, or equivalent,
3-4 years’ practical experience in cyber security risk, technical assurance, or IT audit roles
Networking fundamentals knowledge including ports, firewalls, segmentation, and isolation
Ability to assess real technical risk, not just control statements or policies
Confidence working with non-security teams to challenge assumptions and improve outcomes
What You’ll Work With
SIEM tooling including Microsoft Sentinel and Log360
Cyber risk assessments across infrastructure, networks, systems and a wide variety of software applications
Network architecture, firewall rules, segmentation, and access controls
Third-party and supply chain risk reviews
Risk registers, remediation tracking, and maturity assessments
Collaboration with infrastructure, support, compliance, and security teams
Nice to Haves
Background in SOC, infrastructure, or technical security roles
Exposure to penetration testing concepts (understanding how testing works, not hands-on delivery)
Experience improving immature or overly compliance-led risk processes
Familiarity with public sector or highly regulated environments
Security certifications (or working towards one)
Why Join / Projects
Move cyber risk away from “tick-box” audits into meaningful technical assurance
Play a key role in improving how risk assessments are performed across the organisation
Influence security maturity during an ongoing cyber capability review
Work directly with senior security leadership and have genuine input into decisions
Join a team that values critical thinking, curiosity, and asking better questions
Employee Benefits
28 days annual leave
10% employer pension contribution (no employee contribution required)
Season ticket loan
Cycle to Work scheme
Heavily subsidised staff canteen
36-hour working week with flexible start and finish times
Senior Information Security Risk Analyst | Cyber Risk | World Renowned Arts Institution
Seniority Level
Mid-Senior level
Industry
Computer and Network Security
Technology, Information and Media
IT Services and IT Consulting
Employment Type
Full-time
Job Functions
Engineering
Skills
IT Audit
Cyber Security Risk
Cybersecurity
Network Security
Networking
Firewalls
Information
Senior Information Security Risk Analyst | Cyber Risk | World Renowned Arts Institution
About the Company
We are Prism Digital, your DevOps and Cloud talent partner.
Proud sponsors and co-organisers of the London DevOps meetup group.
We are a niche consultancy with a tight focus on driving quality over quantity. We pride ourselves on our consultative approach, our extensive knowledge of the DevOps, Cloud and infrastructure sector and most importantly how important great talent is to help your company grow and succeed.
We offer:
• Expertise in Cloud (AWS, Azure, GCP), Linux, Windows, CI/CD, Configuration Management, IaC, Cont...
Know more