Security Risk Analyst

Do you want to tackle the biggest questions in finance with near infinite compute power at your fingertips?

G-Research is a leading quantitative research and technology firm, with offices in London and Dallas.  We are proud to employ some of the best people in their field and to nurture their talent in a dynamic, flexible and highly stimulating culture where world-beating ideas are cultivated and rewarded.

This role is based in our Soho Place office – opened in 2023 - in the heart of Central London and home to our Research Lab.

The role

As a Security Risk Analyst at G-Research, you will report to the Security Risk Oversight Lead and play a vital role as an integral member of our Risk Team. 

Key responsibilities of the role include:

• Understanding - and quickly synthesising - information on new technologies across hardware and software to enable the business to make informed decisions on strategic roadmaps

• Conducting threat models and risk assessments to identify vulnerabilities, evaluating the business impact and recommending mitigation strategies to reduce identified risks

• Ensuring security controls are fit-for-purpose with respect to updates and changes to the technology landscape

• Driving thematic reviews of processes and controls to identify strengths, weaknesses and opportunities for improvement

• Proactively prioritising and tracking findings to ensure remediation actions are taken in a timely manner

• Providing oversight, guidance and assurance that supports the continual improvement of security risk management across the organisation

• Ensuring managed services continuously meet our security requirements, including vendor and supply chain, data centre providers and SaaS services

• Building effective working relationships with service, risk and control owners across the organisation, ensuring they understand their responsibilities and accountabilities

Who are we looking for?

We are looking for an experienced candidate with a balanced knowledge of security architecture and risk management.

The ideal candidate will have:

• Extensive and demonstrable experience in security, with a preference for fintech, or technology companies

• Knowledge and proficiency in information security frameworks, such as CIS, ISO 27000 or NIST

• Subject matter expertise in at least one security domain, for example, security & risk management, cryptography, security assessment and testing, identity and access management and security detection/response/forensics

• Cloud security knowledge and experience

• Ability to undertake threat models and risk assessments and communicate their findings

• Experience in applying quantitative and qualitative methodologies for calculating security risk

• Drive, enthusiasm and the ability to think outside of the box to identify suitable approaches

• Excellent verbal and written communication skills to report and present across the organisation

• Strong analytical, organisational and relationship building skills, as well as the confidence to challenge positively

• Enthusiasm and the drive to learn and develop new skills and knowledge

Why should you apply?

• Highly competitive compensation plus annual discretionary bonus

• Lunch provided (via Just Eat for Business) and dedicated barista bar

• 30 days’ annual leave

• 9% company pension contributions

• Informal dress code and excellent work/life balance

• Comprehensive healthcare and life assurance

• Cycle-to-work scheme

• Monthly company events