Baringa
Senior Cyber Secruity Analyst - GRC

How your CV stacks up
Upload your CV to see how well it fits this job role
?%
Senior Cyber Security Analyst - GRC
About Baringa
Baringa is a global consulting firm that partners with leaders to drive change and create value. With deep industry expertise, and enabled by advanced technology, the firm helps clients deliver with greater confidence and certainty.
With over 2,000 people across the UK, Europe, North America, Asia, and Australia, Baringa combines global insight with local understanding across these industries:
- Energy and Resources
- Financial Services
- Government and Public Sector
- Consumer Products and Retail
- Pharmaceuticals and Life Sciences
- Manufacturing
- Technology, Media and Telecoms
The firm delivers strategy, transformation, and operational excellence, powered by advanced technology, data, AI, and digital innovation. Baringa is known for its kind, curious experts who foster collaboration and provide seedless integration with clients.
Certified as a Great Place to Work around the world, Baringa has been recognised by the Financial Times in 22 categories at the UK Leading Management Consultants ranking and by Forbes for four consecutive years as one of the World’s Best Management Consulting Firms.
The Role
Senior Cyber Security Analyst - GRC Position
Our Cyber team is seeking an experienced Senior Cyber Security Analyst specialising in GRC (Governance, Risk & Compliance) to lead security initiatives and guide Baringa’s evolving security posture.
What You’ll Be Doing
- Develop a comprehensive understanding of Baringa’s technology and information systems.
- Lead responses to RFPs (Requests for Proposals) and security audits while conducting supplier security due diligence and third-party assurance activities.
- Identify and assess current and emerging security threats, translating them into actionable risk mitigation strategies.
- Champion and lead a company-wide cybersecurity awareness and training program to reinforce cyber-conscious culture and drive compliance with regulatory needs and best practices.
- Define, implement, and maintain Baringa’s corporate security policies, standards, and procedures.
- Align organisational security strategy with broader business and IT objectives.
- Ensure compliance with information security policies, standards, contractual obligations, and external guidance by advising stakeholders and monitoring risk-based practices.
- Produce technical security MI (Management Information) for governance engagements, focusing on vulnerability management.
- Serve as the primary point of contact for client engagements concerning Baringa’s IT security policies and processes, including business development and existing client relations.
Reasons to use Rodeo
I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?
Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.
Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.
Start with a chat, not a search bar
Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.
Graduate Consultant — 2026 Scheme
Why you're a good match
StrongYour economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.
See breakdownIt searches the market for you
Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.
Why you're a good match
You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.
Experience fit
Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.
Only hits
No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.
What We’re Looking For
Experience & Technical Expertise
- 5+ years’ experience in a full-time senior operational Cyber Security Specialisation, preferably with GRC focus.
- Proven expertise with Microsoft, AWS, and other cloud technology stacks, including experience designing and optimising secure cloud solutions.
- Experience leveraging emerging technologies (e.g., AI, security automation tools) in the design, implementation, and evolution of cybersecurity protocols.
- Robust knowledge of industry security standards, protocols and regulations, including:
- ISO27001
- National Institute of Standards and Technology (NIST)
- NSCS Cyber Assurance Framework (CAF)
- SOC frameworks
- NIS 2 Directive
- NCSC Cloud Security Principles
- Strong consulting background combining engineering, business goals, customer needs, and rigorous compliance adherence.
- Ability to diagnose vulnerabilities in IT systems by applying logical reasoning and extrapolating potential risks from detected weaknesses.
Key Responsibilities
- Conducting technical security assessments and implementing risk-based mitigation strategies.
- Leading policy formation, including authorisation methodologies, authentication technologies, and threat_investigations.
- Demonstrated ability to manage cross-functional teams, engage stakeholders, and initiate parallel multi-departmental projects.
Career Opportunities at Baringa
People First Approach
Baringa prioritises wellbeing and productivity through its proactive and flexible company policies, complemented by valuable benefits and growth opportunities:
-
Professional Development and Growth
- Generous Annual Leave policy: All staff receive 5 weeks of paid annual leave, available from day one. In recognition of long-term commitment, an additional 2 weeks (10 days) of paid leave (5-Year Recharge) is offered after 5 years of service.
- Welcoming and inclusive hybrid working model to support personal well-being and diverse lifestyles.
-
Environmental and Community Impact
- Corporate Responsibility (CSR) Days: Every employee is granted 3 days per year to contribute to charities and local social/environmental initiatives.
-
Wellbeing Programme Investments
- Annual People Fund: A wellbeing allowance to actively help each employee take ownership of their personal development through chosen activities, e.g., fitness, mindfulness, or career-building.
-
Profit Sharing Scheme
- All Baringa employees participate in the company’s group-wide Profit Share Scheme, fostering shared success and accountability.


Get help with your application
Your very own career expert that helps elevate your application to the next level.
**Diversity and Inclusion
Baringa is an Equal Opportunity Employer, fostering a diverse, vibrant, and inclusive culture.
-
Recognised for outstanding work Environment: Baringa has earned the title of Great Place to Work™, celebrated for leading women’s workplace initiatives and strength in its wellbeing and ethical culture.
-
Bind the Planet craft the Future:
- Sustainability remains a top priority in our efforts toward Net Zero emissions as fully recognised under the Science Based Target Initiative (SBTI).
- We take publicly accountable reporting seriously, ensuring we adapt to external compliance standards from entities like CDP and EcoVadis.
Corporate Social Responsibility
- Baringa actively integrates CSR into our business model, championing skill-sharing, time-based volunteering, and funding both local and international causes.
- Encouraging personal engagement and collective collaboration, employees have the flexibility to support a wide variety of charitable and social change agendas.
Application Support and Equal Opportunity
-
Inclusive screening process: No automated systems are relied upon exclusively for evaluation. Applications are reviewed without regard to race, gender identity, age, disability, ethnicity, faith, or university background.
-
Encouragement for underrepresented and minority perspectives, ensuring reasonable adjustment in the recruitment and interview processes.
For further discussions, contact the Baringa Recruitment Team.
Baringa Privacy Notices
For UK & EU Applicants
Your personal data will be retained by Baringa for up to 2 years to assess your recruitment application, fulfilling our legal and reporting obligations.
GDPR Compliance: You have rights to access, rectify, or erase your data, subject to legal transition periods. For details, visit privacy@baringa.com.
For US Applicants
Your personal information will be stored up to 2 years for recruitment and reporting as outlined in the Baringa Recruitment Privacy Notice (AMER & APAC).
Under applicable federal and state laws, you may exercise certain data protection rights. Requests can be addressed to privacy@baringa.com.
For Australia & Singapore Applicants
Your data will be held for up to 2 years, consistent with our Baringa Recruitment Privacy Notice (AMER & APAC).
Australia: Under the Australian Privacy Act, you can request access, correction, or limited deletion. For more info, contact privacy@baringa.com.
Singapore: Under the Personal Data Protection Act (PDPA), similar rights apply. Enquiries go to privacy@baringa.com.
“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”
Jessica, London
Skills
Location