Information Security Assurance Analyst

Salary: £50,000 - £52,000 per annum + Civil Service pension and other benefits

Location: Hybrid - Croydon Head Office (From 2 days per week) and Remote

Position: Permanent, Full-Time

At the Pension Protection Fund (PPF), we provide security in retirement for our members and millions of people throughout the UK who belong to defined benefit (DB) pension schemes. Through the PPF and Financial Assistance Scheme (FAS), we compensate members for their pensions after the employer funding their pension becomes insolvent. In total, we look after over 400,000 members across the PPF and FAS. With over £30 billion in assets under management, our investments support long-term economic growth across the UK.

Our award-winning team of around 450 professionals has earned the IPE UK Pension Fund of the Year title three times in seven years. We work closely with government and industry partners to improve outcomes for scheme members, employers, and the broader pension system—playing a vital role in strengthening retirement security nationwide.

We’re looking for an Information Security Analyst to join our team. The main function of the role is to assist us in being compliant based on recommended security practices, including frameworks such as ISO 27001, NCSC Cyber Essentials Plus, NIST, and wider industry standards.

This role focuses on the testing and review of controls, both those already in place and those currently being delivered across our technology transformation activities. Additionally, there will be a significant part of audit and review work, contributing to third‑party supplier assessments and supporting meetings to ensure Information Security is consistently maintained. This includes exposure to tools and technologies such as Tenable, Varonis, Microsoft Defender / SCEP, and wider cloud‑security controls.

We require an individual with demonstrable, hands-on work experience in information security controls and assurance, ideally supported by relevant certifications or higher educational attainments. You’ll be comfortable with diverse technical concepts; from vulnerability management and risk assessment, through to network fundamentals (TCP/IP, secure configuration, endpoint security) and understand how these relate to real‑world threats, weaknesses, and organisational risks. Additionally, we envisage individuals to have a background in infrastructure, hardware resolution or complex IT support - these skills will provide a solid foundation to succeed in the role.

Finally, you’ll have the opportunity to learn how a Government Arms-Length Body (ALB) operates, while directly contributing to the organisation’s capability and confidence in information security, helping strengthen our approach to secure working practices, supplier assurance, and staff security awareness.

Sound like you? Apply now.

We’re proud to be a Disability Confident Leader and actively encourage applications from people with disabilities. We are committed to ensuring our recruitment process is inclusive and accessible. If you require any reasonable adjustments during the recruitment process, please let us know. We are happy to discuss your needs and ensure you have the support required.

We embrace diverse talent welcoming people with different beliefs, backgrounds and ways of working. Whatever your background, and however you identify, you’ll be welcome here.

Unfortunately, we are unable to consider applicants requiring sponsorship

No agencies please

Roles closes: 6th March