Risk Analyst






Any Defra Office


£35,895 - £43,847

Closing date:

8th March 2021

Job description

The Risk Analyst will report to the Risk & Threat Management Lead. Supporting in the developing and maintaining a clear view of security risks to Defra group, in ensuring that security risks across Defra group are clearly understood, articulated and managed as part of the wider group risk management process.

The core part of the role will be overseeing effective risk management reporting across Defra group

You will be responsible for collation and producing presentational dashboards for Risk reporting, supporting the lead identifying areas of focus and concern so that the Senior Security Advisor and others are able to take effective operational and strategic security decisions.

You will be part of a critical function operating within a complex landscape, so they will also be expected to keep up to date on the current security landscape.

Supporting policy decisions on the pragmatic approach to security for both day to day operations and solutions development, you will need to take a collaborative approach and establish productive working relationships with internal and external stakeholders in driving this work forward, balancing the needs of security with those of the wider Defra.

Please be aware that travel to Reading and London will be required as part of this role.


• Articulate risks identified from various sources in terms of business impact, and maintain the risk register up to date with all new risk information and changes.

• Pragmatically assess risks, ensure alignment with security policies and risk management methodologies.

• Provide support to security risk assessments across Defra group and communicate the security impact of decisions, the approach to risk mitigation and alignment to risk tolerance across to stakeholders across all levels of the business.

• Work with stakeholders, both technical and non-technical, to enable a pragmatic approach to apply security best practice and agree a mitigation plan, a remediation strategy and appropriate timelines for any issues found.

• Support the creation and maintenance of new security standards, procedures and guidelines to aid staff security culture improvements.

• Support vulnerability management efforts in order to assist in the identification of threats to Defra group.

Skills and experience

• Experience of risk management practices in a large business setting or the public sector

• Knowledge and working understanding of industry best practices principles and on cyber, physical, personnel security standards and frameworks, keeping abreast of changes to industry standards, regulations and best practice.

• Analytical, problem solving skills with experience of making risk-based decisions and understanding of the implications of business change

• Performing effectively to deadlines, maintaining focus in challenging situations and adapting to find solutions that meet the needs of stakeholders.

• Ability and confidence to take charge of diverse tasks to achieve high-quality work in a challenging and ever-changing environment.

• Excellent communication and interpersonal skills, comfortable in working with senior managers and suppliers.

• Ability to form excellent relationships within your department and with the wider security community including teams cross Government

• Experience collaborating with multi-disciplinary teams with a delivery and strong customer focus.

• Draw sound and realistic conclusions from all relevant information available and adapting to find solutions that meet the needs of stakeholders.