Cybersecurity Jobs List logo

Cybersecurity Jobs List

  1. Home
  2. Jobs
  3. United Kingdom
  4. Scotland
  5. Glasgow
  6. Cyber Security
  7. Cyber Security Governance Analyst
SW
Swordsword-group.com

Cyber Security Governance Analyst

Glasgow, Scotland, United KingdomContract1d ago

Sword is a leading provider of business technology solutions within the Energy, Public and Finance Sectors, driving transformational change within our clients.  We use proven technology, specialist teams and domain expertise to build solid technical foundations across platforms, data, and business applications.  We have a passion for using technology to solve business problems, working in partnership with our clients to help in achieving their goals. 

About the role:

This role sits at the heart of a major energy network programme, supporting the design and embedding of cyber security governance across the organisation.

This is not a traditional audit-focused GRC role. Instead, you’ll take a hands-on approach to shaping how security frameworks are translated into real, working processes across the business—particularly in areas such as configuration management, secure configuration standards, and change governance.

You’ll work closely with security, technology, and business teams to define policies, build governance structures, and ensure these are effectively adopted. This role requires someone who can move beyond theory—bringing clarity to complex security requirements and helping teams apply them in practice.

As a Cyber Security Governance Analyst, you will:

  • Develop and document a Configuration Management Plan aligned to recognised frameworks such as NIST.
  • Define and establish secure configuration principles, translating technical requirements into clear, actionable policy.
  • Design and document governance processes, including roles and responsibilities across the 2nd Line of Defence.
  • Support the rollout and adoption of governance frameworks, working closely with business change and communications teams.
  • Enhance change management processes, including contributing to Change Advisory Board (CAB) inputs and governance controls.
  • Work with stakeholders to embed security standards into day-to-day operations across technology and business teams.
  • Gather and interpret configuration compliance data to support governance and assurance activities.
  • Simplify complex security concepts into practical guidance that can be understood and applied by non-technical stakeholders.
  • Maintain high-quality documentation to support audit, compliance, and continuous improvement.

Requirements

  • Experience working within cyber security governance, risk, or security controls roles.
  • Strong understanding of security frameworks such as ISO 27001, NIST, or similar.
  • Experience developing or contributing to security policies, standards, or governance frameworks.
  • Ability to translate security requirements into practical processes and guidance for business teams.
  • Experience working in regulated environments such as energy, utilities, or financial services.
  • Strong stakeholder engagement skills, with the ability to work across technical and non-technical teams.
  • Excellent documentation skills, with a structured and detail-oriented approach.

It would be great if you also had:

  • Experience developing or implementing configuration management or secure configuration standards.
  • Exposure to change management processes and governance forums such as CAB.
  • Understanding of security controls across areas such as access management, configuration, or asset management.
  • Experience supporting the rollout or embedding of new governance processes across an organisation.

Benefits

At Sword, our core values and culture are based on caring about our people, investing in training and career development, and building inclusive teams where we are all encouraged to contribute to achieve success. We offer comprehensive benefits designed to support your professional development and enhance your overall quality of life. In addition to a Competitive Salary, here's what you can expect as part of our benefits package:

  • Personalised Career Development: We create a development plan customised to your goals and aspirations, with a range of learning and development opportunities within a culture that encourages growth.
  • Flexible working: Flexible work arrangements to support your work-life balance. We can’t promise to always be able to meet every request, however, are keen to discuss your individual preferences to make it work where we can.
  • A Fantastic Benefits Package: This includes generous annual leave allowance, enhanced family friendly benefits, pension scheme, access to private health, well-being, and insurance schemes.

At Sword we are dedicated to fostering a diverse and inclusive workplace and are proud to be an equal opportunities employer, ensuring that all applicants receive fair and equal consideration for employment, regardless of whether they meet every requirement. If you don’t tick all the boxes but feel you have some of the relevant skills and experience we’re looking for, please do consider applying and highlight your transferable skills and experience. We embrace diversity in all its forms, valuing individuals regardless of age, disability, gender identity or reassignment, marital or civil partner status, pregnancy or maternity status, race, colour, nationality, ethnic or national origin, religion or belief, sex, or sexual orientation. Your perspective and potential are important to us.

#LI-PD1

Categories

Cyber Security
Governance Risk and Compliance
Information Security
IT Governance
Security Analyst

Skills

Access Management
Asset Management
Audit
Change Management
Compliance
Configuration Management
Cyber Security
Governance Risk and Compliance
Information Security
ISO 27001
NIST
Policy Development
Risk Management
Security Controls
Security Governance