“It feels good to have a career with real purpose.”

Contract Type: Permanent

Location: Alderley Edge OR Edinburgh

Working style: Hybrid 50% home/office based

Closing date: 21st January 2026

Are you passionate about cyber security and eager to build your career in a dynamic and supportive environment? Join us and be a part of a team that values personal development, innovation, and excellence in cyber security.

The Attack Surface Management (ASM) team is part of Royal London’s Group Operational Resilience team, reporting to the Group Chief Security Officer. Our mission is to protect Royal London Group’s (RLG’s) information and data by continuously identifying, assessing, and reducing our exposure to cyber threats. We work closely with the business to ensure our digital footprint is secure and aligned with our risk appetite and compliance requirements.

We are looking for a dedicated and enthusiastic Cyber Analyst to work across our Cyber Threat Intelligence (CTI) and Cyber Threat Testing (CTT) teams within ASM. In this role, you’ll play a key part in helping us ensure the group is protected against the most recent and relevant cyber threats, working collaboratively with the wider cyber team to improve RLG’s cyber defences. Your work will help protect the group against ever-evolving cyber threats.

This position is open to considering career-changers from outside cyber, so even if you don’t have hands-on cyber security experience but can demonstrate an interest in the field, we would love to hear from you!

About the role

• You’ll supporting the Cyber Threat Intelligence (CTI) team in:
  • Identifying and assessing potential cyber threats to the organisation.
  • Sharing information with other cyber functions to enhance defences, including detection and speed up response.
  • Clearly articulating the risk and relevance of intelligence to key stakeholders.
• You’ll be supporting the Cyber Threat Testing (CTT) team in:
  • Communicating effectively with third-party suppliers to schedule and maintain external penetration tests
  • Liaising with internal stakeholders to smoothly facilitate external penetration tests.
  • Reviewing incoming penetration testing reports and ensure this information is shared with relevant stakeholders to improve RLG’s defences
• You’ll be supporting the Threat and Vulnerability Management (TVM) team in:
  • Reviewing vulnerability attack vectors from cyber threat intelligence to prioritise the issues which pose the greatest risk to the group and clearly articulate this risk to key stakeholders.
  • Leveraging market-leading vulnerability management tools to identify, assess, and co-ordinate the remediation of vulnerabilities effectively.
  • Reviewing asset inventory accuracy and ensuring authentication is successfully applied.
• You’ll help ensure situational awareness across cyber through assisting with presentations to both technical and non-technical audiences in written and verbal formats.
• You’ll be continually learning, as threat actors evolve over time, and we expect our teams to evolve their skills too.
• Be involved in the implementation of the group’s Attack Surface Management model.

About you

• A genuine interest in cyber security and a desire to build a career in this field.
• An understanding of cyber risk and threats; an awareness of the current state of the cyber threat landscape is desirable but not essential.
• Some knowledge of technical areas such as attack surface discovery, network and infrastructure fundamentals, cloud and SaaS environments, web and API security, and threat intelligence concepts (e.g. intelligence lifecycle, diamond model).
• Some knowledge of industry-leading security tools such as proactive security tooling and vulnerability management platforms.
• Ideally hold a degree in a technical subject such as (but not limited to) cyber security, information security, or information technology.
• Ideally hold or be currently working towards at least one professional security certification, such as (but not limited to) Security+, CPSA, GCTI, or CEH.
• High level of accuracy and attention to detail, with an analytical and methodical approach to demanding technical challenges.
• Positive, can-do attitude and a service-oriented mindset.
• Previous experience in a regulated environment, especially in financial services, is desirable.

About Royal London

We are the UK’s largest mutual life, pensions, and investment company, offering protection, long-term savings and asset management products and services. 

Our People Promise to our colleagues is that we will all work somewhere inclusive, responsible, enjoyable and fulfilling. This is underpinned by our Spirit of Royal London values of: - Empowered, Trustworthy, Collaborate, Achieve. 

We have always been proud to reward employees by offering great workplace benefits such as 28 days annual leave in addition to bank holidays, an up to 14% employer matching pension scheme and private medical insurance. You can see all our benefits here - Our Benefits

Inclusion, diversity and belonging 

We’re an Inclusive employer. We celebrate and value different backgrounds and cultures across Royal London. Our diverse people and perspectives give us a range of skills which are recognised and respected – whatever their background.