Security Analyst

Please note, this is a 6 month contract to start (opportunity for extension and/or permanency).

Hybrid working (up to 2 days a week onsite)

Are you an experienced IT risk or operational resilience professional looking to make a tangible impact on regulatory compliance in the financial services sector? We’re currently hiring for a DORA Implementation Specialist to support a high-profile regulatory programme with a leading regulated organisation.

This is a project-critical role where you'll lead the planning, coordination, and execution of activities to align with the Digital Operational Resilience Act (DORA). While prior DORA experience is advantageous, it’s not essential — strong knowledge of IT risk management, governance frameworks, and stakeholder engagement is key.

Responsibilities:

• Lead the implementation of DORA-aligned controls, with focus on ICT risk management, incident response, and third-party oversight.
• Develop and execute a compliance roadmap in collaboration with IT, risk, legal, and procurement teams.
• Review and enhance governance policies and risk frameworks to meet regulatory standards.
• Coordinate operational resilience exercises and scenario-based testing.
• Drive awareness and training initiatives across the organisation.

Requirements:

• 5+ years' experience in IT risk, operational resilience, or GRC roles within regulated industries (e.g. finance, insurance, telco).
• Hold a Stamp 4 or EU passport
• Confident working cross-functionally and leading stakeholder engagement at multiple levels.
• Familiarity with regulatory frameworks such as ISO 27001, NIST, NIS2, or DORA.
• Comfortable delivering results in a short-term, fast-paced project environment.
• Professional certifications such as CISM, CRISC, or CISSP are a plus.