Senior Cyber & Information Security Analyst

Company description:
Water Utility Company based in Yorkshire region of England.
Job description:
Senior Cyber & Information Security Analyst
Hello! Thanks for stopping by. Let us tell you about all the great reasons to join us here at Yorkshire Water:
We offer a competitive salary, depending on experience (£44,942 -£56,178)
Annua incentive related bonus (£1000 maximum bonus opportunity for the performance year)
Attractive pension scheme (up to 12% company contribution)
Development opportunities in line with the Senior Cyber & Information Security Analyst progression plan
25 days annual leave plus bank holidays plus an extra wellness day!
Life assurance cover of 4 times pensionable salary
A great benefits package choose from health cash plan scheme, critical illness insurance, dental insurance, life assurance flex and partner cover.
Retail savings scheme
Online GP service, cycle to work scheme, gym membership discounts and many more!
Location: Buttershaw / Hybrid Working (1-2 days in the office a week Bradford)
Work type: Permanent. 37 hours per week, Monday Friday. There will also be a periodic requirement to act as Standby on-call.
We have an exciting opportunity for a Senior Cyber & Information Security Analyst to join the Tech team at Yorkshire Water and be a part of helping Yorkshire Water to provide the best service to our customers. Could this be you?
What we do:
Everyone has an idea of what a water company does. Here in Yorkshire, we make sure that over 5.4 million people living in the region and the millions of people who visit our region each year, can rely on our services, and have clean and safe drinking water on tap and that their wastewater is taken away. But for us, its so much more than this.
We look after communities, protect the environment, and plan to look after Yorkshires water, today, tomorrow 24/7, 365 days a year. We provide essential water and wastewater services to every corner of the Yorkshire region, and play a key role in the regions health, wellbeing, and prosperity.
New environmental legislation, unprecedented levels of investment and changing expectations from customers means that this is an exciting time to discover opportunities within the water industry. The Tech function is a key part of how we plan to meet the changing expectations of customers and regulators.
The Yorkshire Water Cyber Security Team - where protecting critical infrastructure meets camaraderie and curiosity!
We're a dynamic crew of professionals who blend technical wizardry with real-world vigilance to keep our systems safe. We have a varied range of skillsets in our team including Security Operations, intrusion detection, vulnerability scanning, advanced threat protection, Operational Technology, Physical Security and Governance Risk and Compliance specialists to name but a few.
We cover every angle of digital defence. Whether you're decoding threat intel, crafting policy, leading tabletop exercises, or crafting clever security awareness campaigns, there's never a dull moment here. Youll be exposed to leading cyber security technologies & practices in an environment where your opinion matters and you have real freedom to approach problems your own way.
Were a team that thrives on collaboration, learning, and a bit of fun. We celebrate wins together. And yes, weve debated the realism of hacking scenes in Wargames & Mr Robot. if youre wondering, our office isn't in the basement, and we dont regularly wear hoodies and sunglasses (in the office). So, if you're ready to join a team thats professional, sharp, friendly and supportive, come, join us and lets make Yorkshire Water safer together.
Where you fit in:
As a Senior Cyber & Information Security Analyst you will:
Provide expert advice on security strategies to manage risks and ensure compliance with standards.
Contribute to the development and maintenance of information security policies, standards, and guidelines.
Identify risks from new technologies and business practices, offering feedback to the business.
Conduct security risk assessments, business impact analyses, and system accreditations for complex systems.
Obtain and act on vulnerability information; perform vulnerability assessments for medium-complexity systems.
Recommend and implement control improvements following security breaches or identified vulnerabilities.
Contribute to the selection and deployment of vulnerability assessment tools and techniques.
Oversee adherence to security operations procedures, including cloud security and automated threat responses.
Investigate and resolve actual or potential security breaches and vulnerabilities.
Ensure integrity and completeness of security records and timely support.
Ensure effective implementation of security measures and monitor their performance.
Integrate new compliance requirements and technologies into security policies and procedures.
Analyse IT asset catalogues for vulnerability assessment.
Conduct business impact analysis and support tool selection for vulnerability management.
Determine and implement fixes, collaborating with others to apply preventative measures.
Analyse trends to improve problem management processes.
Perform risk management activities for medium-complexity functions or projects.
Identify and assess risks and vulnerabilities, develop mitigation strategies, and report findings.
What skills & qualifications you will need:
Relevant experience in the Cyber Security field.
Possess or be able to attain UK Government Security Check. Yorkshire Water will initiate this check if you are successful. More information on the things you will be asked about can be found here
Proven experience and ability in a Cyber Security role.
Understanding of the CAF, NIST, ISO-27001, PCI-DSS, NIS, CIS and other information security frameworks & standards.
Ability to interface smoothly with all stakeholders within the business, interpret requirements, explain simply & deliver appropriate solutions.
Risk assessment (including supplier risk assessment), control recommendation, mitigation and remediation.
Able to perform as a Security SME while providing leadership, advice and guidance to other team members.
Technical experience in Incident response.
You will also benefit from having:
Relevant industry recognised Cyber Security qualification and / or a degree in Information Security or Cyber Security
Previous experience in an operational Senior or Lead Cyber security Analyst role, SOC Analyst, or other Cyber Security Operations role.
Experience in information security incident response & investigations.
A good knowledge of General Data Protection regulations (UK-GDPR)
Experience working with legal, audit and compliance teams.
Penetration testing support.
On call Requirement:
There will be an element of compensated periodic on-call in this roll. Once you are settled in role, you will join the on-call standby rota. Because the bad guys never sleep.Although we operate 24 hours a day, 365 days a year, its important to us that we support flexible working patterns and job share options (when we can), to help you make the best of both your work and home life. We know that juggling childcare responsibilities or getting that ideal work/life balance isnt always easy!
Do we sound like your cup of tea?
If youve got experience in Cyber & Information Security and want to help us deliver great service for our customers whilst looking after the environment, then be sure to apply today to find out what a career with Yorkshire Water can offer you.
If successful for the role, you will be required to undergo pre-employment checks that will include a Basic Disclosure Check, carried out through a Third-Party Company, prior to commencing employment. You will be required to go through the security vetting process for a Security Check clearance.
All our roles are subject to a medical questionnaire, and further medicals when required.
We are committed to removing barriers and ensuring our recruitment process is accessible to everyone. We offer a range of adjustments to make your application experience as comfortable and straightforward as possible.
If you have an accessibility need, disability, or condition thatrequires changes to the recruitment process, please include this information in your application. We will then discuss any reasonable adjustments required.
Kelda Group reserve the right to close this position before the published closing date, should the need occur. We therefore advise that you complete and submit your application as soon as possible.
Closing date for this role is the 8th September 2025
No agencies please.

TPBN1_UKTJ