NIST Cyber Assurance Analyst

About the team

You'll be joining our Information Security Governance, Risk and Compliance function, a small but highly focused team of two that sits within our wider Information Security function. The broader team consists of around 30 specialists across Security Operations, Engineering and Cyber, working collaboratively to protect and strengthen the Group’s security posture. Our colleagues are based across multiple locations, including Chatham, Wolverhampton, Hyderabad and Bangalore, creating a diverse and globally connected security community.

What you will be doing?

As a NIST Cyber Assurance Analyst you will have the opportunity to support the Information Security programme and framework. You will focus on core areas such as risk management, third‑party security due‑diligence reviews, ensuring compliance with legal, regulatory and relevant security standards such as ISO 27001, PCI DSS, SWIFT and the UK data protection act / GDPR. You will also play a leading role in the creation and delivery of the security awareness and training activities as defined by an annual schedule of targeted training and testing across the Group. You will enjoy a high level of autonomy within your remit, trusted to manage your workload, shape key security initiatives, and drive improvements across the Information Security programme with ownership and independence. This role will require occasional travel between the UK offices and third‑party sites.

Your responsibilities will include…

• Assisting with implementation, monitoring and assurance reviews of IT security controls.
• Maintaining information security frameworks, policies, standards and guidelines.
• Supporting the cyber incident response activities during the initial response analysis, containment and recovery phases of a cyber incident.
• Implementing process improvements and efficiencies as defined by the agreed service improvement plans.
• Assisting with the definition and enforcement of configuration standards and policies for security technologies.
• Conducting research and providing recommendations on emerging threats in support of security enhancements and process improvements.
• Leading and presenting the Group’s security awareness and training programme, ensuring it meets all industry regulations, standards, and compliance requirements, while engaging employees to understand and adopt secure working practices.

What’s in it for you?

We offer a base salary dependent on experience and location of between £52,500 – £60,000 and a competitive benefits package including:

• Enhanced family‑focused benefits
• Hybrid‑working (3 days in office, 2 days from home)

About us

At OSB Group, we understand how much our people bring to our organisation, which is why we try our best to give back too! Our Purpose is to help our customers, colleagues and communities prosper and we are on a transformation journey to become ‘the bank of the future’. Our commitment to professional development, flexible working, and employee well‑being fosters a dynamic and supportive workplace.

Do you have the skills?

• Robust previous experience of working in an Information Security role (preferably within Financial Services) is essential.
• Good level of experience conducting third‑party risk assessments is essential.
• Good level of experience delivering a security awareness training programme is essential.
• Good working experience of performing security attestation for SWIFT and PCI/DSS is essential.

Next steps

If this sounds like you, please apply now! For internal applications please visit the internal careers page to apply. Still on the fence? Hear from our team or explore our process: Shortlisted candidates will go through a personalised recruitment process, that is relevant and conversational – inclusive any individual reasonable support required. We want to bring out the best in you!

Diversity, Equity & Inclusion

Not sure if you meet the spec? Let us decide. Research tells us that those from marginalised groups feel like they need to meet 100% of the criteria to apply. Here at OSB, we are committed to inclusivity and understand the value different experiences and perspectives can bring, so please don’t feel like you need to check every box to apply for a role internally. We champion diversity at all levels, with Board‑level Diversity Champions tracking our progress. We are proud to be signed up to the Women in Finance Charter to actively support the growth and development of senior women in our sector and are dedicated to treating all our employees and job applicants equally, opposed to discrimination on any grounds.

#J-18808-Ljbffr