Engineer the Quantum RevolutionYour expertise can help us shape the future of quantum computing at Oxford Ionics.

View Open Roles

Security Analyst

Smith+Nephew
Hertfordshire
1 month ago
Applications closed

Related Jobs

View all jobs

Security Analyst

Security Analyst

Security Analyst

Security Analyst

Security Analyst

Security Analyst - Risk Management & Atmospherics - Balad

Life Unlimited. At Smith+Nephew we design and manufacture technology that takes the limits off living.

At Smith+Nephew we are looking for:Security Analyst

The Security Analyst (Governance & Tooling) is responsible for supporting the governance of secure solution delivery and the operational coordination of architectural security assurance processes across the technology estate. Working closely with security architects, enterprise architects, and IT compliance & delivery teams, the role plays a key part in embedding security architecture principles, design risk reviews, and compliance checks throughout the project lifecycle.

The role coordinates and manages the Enterprise Architecture Risk and Security (EARS) and Technology Design Assurance (TDA) processes, ensuring that security risks, control gaps, and compliance obligations are identified early and addressed effectively. In addition, the postholder supports the maintenance of the enterprise architecture toolset (Capsifi), assisting with security-related data integration, modelling, and reporting.

This role is ideal for someone early in their career in security architecture, technology governance, or enterprise architecture, seeking hands-on exposure to secure design review processes, tooling, and stakeholder engagement in a regulated technology environment.

What will you be doing?

Coordinating risk and security assessments for enterprise architecture to identify potential threats and ensure compliance with security policies and regulations Managing secure design assurance processes, facilitating meetings, tracking actions, and collaborating with senior architects to address security risks Maintaining and enhancing security architecture data in enterprise tools, integrating multiple data sources to provide clear visibility of security posture and risks Creating dashboards and visual reports to highlight architectural risk themes, compliance status, and security metrics for stakeholders Acting as a key liaison between project teams, architects, and governance bodies to ensure smooth security review workflows and process adherence Supporting the documentation and evolution of security architecture, including application risk profiles and compliance frameworks, to guide strategic security planning

What will you need to be successful?

A strong interest or background in security architecture, IT risk, or cybersecurity governance, supported by academic study, training, or relevant experience Solid understanding of key security concepts such as secure design, risk assessment, and control frameworks, with familiarity in tools like ServiceNow, Capsifi, LeanIX, ArchiMate, or Visio Proficiency in handling and preparing structured data (e.g., Excel, CSV) for integration and reporting in enterprise architecture tools  Confident communication skills, able to engage effectively with both technical and non-technical stakeholders Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field, with progress or interest in certifications like TOGAF, SABSA, CompTIA Security+, or CCSK  Experience or familiarity with security design reviews, impact assessments, and managing governance in regulated environments is highly desirable Strong organizational skills, a proactive attitude, and a willingness to learn from senior professionals in security and architecture

You. Unlimited.

We believe in creating the greatest good for society. Our strongest investments are in our people and the patients we serve. 

Inclusion, Diversity and Equity:Committed to Welcoming, Celebrating and Thriving on Diversity, Learn more about our Employee Inclusion Groups on our website

Your Future:annual bonus, life insurance, company stock saving plan

Work/Life Balance:paid volunteering hours, flexible approach

Your Wellbeing:private health care with dental care package, multisport card/my benefit platform

Flexibility:possibility of working in hybrid model

Training:Hands-On, Team-Customized, subsidies for language classes, certifications and postgraduate studies

Extra Perks:referral bonus, recognition program, mentoring program

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

The Future of Cybersecurity Jobs: Careers That Don’t Exist Yet

Cybersecurity has moved from a specialist concern to a national and global priority. Once seen as an IT issue, it is now a boardroom subject, a government responsibility, and a daily reality for individuals. With the increasing reliance on digital infrastructure, cloud platforms, and artificial intelligence, the risks posed by cyber threats have never been higher. The UK’s cybersecurity sector is thriving. It is home to thousands of companies offering defence services, penetration testing, encryption solutions, and critical infrastructure protection. Demand for cybersecurity skills continues to rise, with both the public and private sector investing heavily to defend against ransomware, nation-state cyber operations, and new forms of digital crime. Yet the industry is still at the beginning of its journey. The technologies that will define the next two decades—artificial intelligence, quantum computing, extended reality, and the Internet of Things—are only just starting to reshape cybersecurity. This means that many of the most important cybersecurity jobs of the future don’t even exist today. This article explores why new roles will emerge, what they might look like, how today’s jobs will evolve, why the UK is well-positioned to lead, and how professionals can prepare.

Seasonal Hiring Peaks for Cybersecurity Jobs: The Best Months to Apply & Why

The UK's cybersecurity sector has emerged as one of the most critical and lucrative technology markets, with roles spanning from security analysts to penetration testers and chief information security officers. With cybersecurity positions commanding salaries from £28,000 for junior security analysts to £140,000+ for senior security architects, understanding when organisations actively recruit can dramatically impact your career trajectory in this essential field. Unlike traditional IT sectors, cybersecurity hiring follows distinct patterns influenced by threat landscapes, regulatory compliance cycles, and incident response requirements. The sector's unique combination of perpetual threat evolution, regulatory pressures, and skills shortages creates predictable hiring windows that strategic professionals can leverage to advance their careers in protecting Britain's digital infrastructure. This comprehensive guide explores the optimal timing for cybersecurity job applications in the UK, examining how cyber threat cycles, compliance deadlines, and government initiatives influence recruitment patterns, and why strategic timing can determine whether you join a cutting-edge security consultancy or miss the opportunity to defend against tomorrow's cyber threats.

Pre-Employment Checks for Cyber Security Jobs: DBS, References & Right-to-Work and more Explained

The cyber security sector in the UK stands at the forefront of protecting national infrastructure, business operations, and personal data from increasingly sophisticated cyber threats. As organisations across all sectors recognise cyber security as a critical business function, employers are implementing the most rigorous pre-employment screening processes in the technology industry to ensure they recruit professionals capable of defending against advanced persistent threats and maintaining the highest standards of security and trustworthiness. Whether you're a penetration tester, security analyst, incident response specialist, or chief information security officer, understanding the comprehensive vetting requirements is essential for successfully advancing your career in this security-critical field. This detailed guide explores the extensive background checks and screening processes you'll encounter when applying for cyber security positions in the UK, from fundamental eligibility verification to the most stringent security clearance requirements and specialised threat intelligence assessments.