CrawlJobs Logo
Spectrum Life Logo Spectrum Life · IT - Administration

Security & Privacy Analyst

United Kingdom Employment contract · Job Posted December 12, 2025
Apply Position
Job Link Share

Job Description

The Security & Privacy Analyst will play a key role in protecting Spectrum.Life’s information assets, ensuring privacy-by-design across products and services, and supporting the organisation in meeting high standards of security, compliance, and data protection. This role combines hands-on security operations, privacy analysis, compliance monitoring, and cross-functional collaboration with engineering, product, operations, and clinical teams.

Job Responsibility

  • Monitor, assess, and respond to security alerts, incidents, and vulnerabilities across the technology environment
  • Support security operations activities including log analysis, threat detection, endpoint security, and access control management
  • Conduct regular vulnerability assessments and coordinate remediation with relevant teams
  • Assist in maintaining and improving security tools, controls, and frameworks (e.g., SIEM, IAM, MDM, KnowBe4, encryption standards)
  • Support third-party security reviews and due diligence assessments
  • Participate in business continuity and disaster recovery planning and testing
  • Support GDPR and other applicable privacy frameworks (e.g., ePrivacy, UK GDPR, HIPAA-aligned practices for clinical contexts)
  • Conduct Data Protection Impact Assessments (DPIAs) and Legitimate Interest Assessments (LIAs)
  • Assist in maintaining Records of Processing Activities (RoPA)
  • Review new product features and vendor integrations for compliance with privacy-by-design and security-by-design principles
  • Monitor adherence to internal data protection policies and assist in facilitating corrective actions
  • Assist with internal audits, risk assessments, and external certifications (e.g., ISO 27001, DCB0129/0160, Cyber Essentials)
  • Help develop and maintain security and privacy documentation, standards, and procedures
  • Track remediation of audit findings and risk treatment plans
  • Support employee security/privacy training and awareness initiatives
  • Contribute to policy updates and ensure alignment with regulatory requirements
  • Support investigations of potential data breaches or security incidents
  • Assist in managing the incident lifecycle from detection to resolution
  • Help prepare incident reports, root cause analyses, and corrective action plans
  • Work with internal teams to implement lessons learned and strengthen preventive controls

Requirements

  • Experience in information security, privacy, compliance, or a related field
  • Strong understanding of GDPR, data protection principles, and privacy best practices
  • Familiarity with security operations, vulnerability management, and incident response
  • Experience with security tools (e.g., SIEM, endpoint protection, logging platforms)
  • Ability to interpret risks and communicate them clearly to technical and non-technical audiences
  • Strong documentation, analytical, and problem-solving skills
  • Excellent attention to detail and commitment to quality
  • Experience in health-tech, clinical platforms, or handling sensitive health data
  • Certifications such as ISO 27001 Lead Implementer/Auditor, CompTIA Security+, CISSP, CIPP/E, or equivalent
  • Experience supporting audits or managing compliance frameworks
  • Familiarity with cloud security and secure development practices

What we offer

  • Full time permanent contract
  • Competitive salary (Dependent on experience)
  • In-office, remote or hybrid working options
  • 25 days annual leave
  • 24/7 EAP and a wide range of health and wellbeing supports
  • Extensive list of employee perks and benefits
Spectrum Life - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Security & Privacy Analyst

8 matching positions

Junior Security Analyst

The Junior Security Analyst, working closely with other analysts, will be a key ...
Location
Location
United States , Little Rock
Salary
Salary:
70000.00 - 115000.00 USD / Year
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum five years’ combined experience working with IT Audits and Assessments
  • Vulnerability management and/or assessing firewalls and networks, including VPN, DLP, IDS/IPS
  • HIPAA, CMS MARS-E, NIST, ARC-AMPE Security and Privacy control frameworks
  • IT governance, risk, compliance (GRC), auditing, drafting security plans and conducting risk assessments
  • Hold one or more privacy or security certifications such as IAPP, CHPC, CIPP, CISA, CISM, CISSP
  • Undergraduate degree or 4 years’ additional relevant experience
Job Responsibility
Job Responsibility
  • Analysis and comprehension of client’s overall security program and posture
  • Assessing technical compliance of systems against specified frameworks/requirements
  • Contributing to the discovery, assessment, analysis, and management of network, and application vulnerabilities and remediation efforts
  • Identifying and documenting detailed remediation recommendations
  • Understanding relevant laws and regulations for security and privacy requirements
  • Providing consultation and framework gap analysis of vendor deliverables to the client
  • Drafting or recommending updates to policies, standards, procedures, and related security and privacy deliverables
What we offer
What we offer
  • Medical insurance
  • Dental insurance
  • Vision insurance with an employer contribution
  • Flexible spending or health savings account
  • Life and AD&D insurance
  • Short and long term disability coverage
  • Paid time off
  • Employee assistance
  • Participation in a 401k program with company match
  • Additional voluntary or legally-required benefits
  • Fulltime
Read More
Arrow Right

Information Security Analyst

We are looking for an Information Security Analyst to join our Risk, Legal and C...
Location
Location
Australia , Sydney
Salary
Salary:
Not provided
lgt.com Logo
LGT Gruppe Holding AG
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years in security operations or related IT functions, such as networking or IT systems engineering
  • Strong understanding of security concepts such as server hardening & patching, M365 & Azure configuration, Endpoint Protection solutions, Vulnerability Management, Firewall configuration, user access management, data loss prevention
  • Strong understanding of security architecture concepts across on-premises, cloud, and SaaS environments
  • Experience assessing solution designs and identifying security risks at an architectural level
  • Ability to translate complex technical and policy-driven security requirements into business-friendly language
  • Strong pragmatic, risk-based mindset with the ability to balance security, usability, cost, and delivery timelines
  • Experience engaging in business projects, conduct threat modelling, risk assessments, controls design as well as validating the design and implementation of key controls
  • Experience driving security initiatives to align technical services with security policies
  • Strong problem-solving abilities, with a logical and methodical approach to tasks
  • Excellent communication skills, able to translate technical concepts for non-technical stakeholders
Job Responsibility
Job Responsibility
  • Responsible for maintaining a strong security environment, reducing cyber risk exposure, and supporting security operations, monitoring, and reporting
  • Contributes to LGT WM's information security strategy and risk framework while embedding security requirements into key business projects from the outset
  • Participates in initiatives to ensure compliance with privacy laws and external regulatory obligations, including GS 007
  • Support the cyber security assurance program, assisting audit activities and owning the remediation of findings
  • Support an effective cyber security assurance strategy over third parties / suppliers, enabling the business to engage with strategic partners without taking excessive risk
  • Conduct third party reviews when required
  • Actively participate in cyber security strategy formulation, prioritizing the protection of mission critical digital assets and maximizing the value of security investments
  • Participate in project delivery teams to provide security input throughout the solution lifecycle, from early design through to implementation and go-live
  • Participate in operational change management and ensure security related changes are adequately tested prior and post implementation, to reduce business impacts
  • Fulltime
Read More
Arrow Right

Security Analyst

The Security Analyst, working closely with other analysts, will be a key contrib...
Location
Location
United States , Little Rock
Salary
Salary:
80000.00 - 130000.00 USD / Year
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 6 years combined experience working with: IT Audits and Assessments
  • Vulnerability management and/or assessing firewalls and networks, including VPN, DLP, IDS/IPS
  • HIPAA, CMS MARS-E, NIST, ARC-AMPE Security and Privacy control frameworks
  • IT governance, risk, compliance (GRC), auditing, drafting security plans and conducting risk assessments
  • Hold one or more privacy or security certifications such as IAPP, CHPC, CIPP, CISA, CISM, CISSP
  • Undergraduate degree or 4 years additional relevant experience
Job Responsibility
Job Responsibility
  • Analysis and comprehension of client's overall security program and posture
  • Assessing technical compliance of systems against specified frameworks/requirements
  • Contributing to the discovery, assessment, analysis, and management of network, and application vulnerabilities and remediation efforts
  • Identifying and documenting detailed remediation recommendations
  • Understanding relevant laws and regulations for security and privacy requirements
  • Providing consultation and framework gap analysis of vendor deliverables to the client - such as system security plans, security control assessments, and information system risk assessments
  • Drafting or recommending updates to policies, standards, procedures, and related security and privacy deliverables
What we offer
What we offer
  • Medical, dental, and vision insurance with an employer contribution
  • Flexible spending or health savings account
  • Life and AD&D insurance
  • Short and long term disability coverage
  • Paid time off
  • Employee assistance
  • Participation in a 401k program with company match
  • Additional voluntary or legally-required benefits
  • Fulltime
Read More
Arrow Right

Analyst, Security Compliance

As a Compliance Analyst, you will play an important role in supporting Teradata'...
Location
Location
United States , California
Salary
Salary:
76400.00 - 114500.00 USD / Year
teradata.com Logo
Teradata
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Must be a U.S. person located in the United States
  • A bachelor's degree in Information Security, Information Systems, or a related field, or equivalent experience, plus 1 to 3 years of experience in security, compliance, IT audit, or a related role
  • Foundational knowledge of security and privacy frameworks like ISO 27001, ISO 42001, SOC 1/2, HITRUST, and PCI DSS
  • Familiarity with FedRAMP (NIST SP 800-53), CMMC, and NIST SP 800-171 is strongly preferred
  • Experience supporting audits, risk assessments, or evidence collection activities
  • Strong organizational skills and the ability to manage multiple priorities in a deadline-driven environment
  • Effective communication skills, with the ability to work collaboratively across technical and non-technical teams
  • A working understanding of cloud security concepts and controls across environments such as AWS, Microsoft Azure, or Google Cloud Platform (GCP)
  • Familiarity with technologies and controls spanning hosts, databases, networking, and applications
  • Exposure to federal compliance artifacts and activities (SSP, SAR, POA&M, ConMon reporting) is a strong plus
Job Responsibility
Job Responsibility
  • Support day-to-day operations of Teradata's FedRAMP Moderate authorization, including continuous monitoring (ConMon) deliverables, POA&M management and remediation tracking, significant change documentation, and 3PAO annual assessment support
  • Assist with Teradata's CMMC compliance activities, including evidence collection and control mapping aligned to NIST SP 800-171
  • Gather, organize, and provide evidence of Teradata's security controls to support internal and external audits and certification activities
  • Coordinate with internal stakeholders to support compliance initiatives across the broader framework portfolio, including ISO 27001, SOC 2 Type 2, PCI DSS, HIPAA, and HITRUST
  • Respond to customer and prospect security requests, including security documentation packages, questionnaires, and audit support
  • Develop and maintain compliance metrics to track program health and support continuous improvement reporting
What we offer
What we offer
  • Healthcare
  • Life and disability insurance plans
  • 401(k)-retirement savings plan
  • Time-off programs
  • Fulltime
Read More
Arrow Right

Privacy Analyst

Overview of job: The Privacy Analyst, working closely with the senior privacy an...
Location
Location
United States , Little Rock
Salary
Salary:
80000.00 - 130000.00 USD / Year
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum six years combined experience working with: IT Audits and Assessments
  • HIPAA, CMS MARS-E and NIST Security and Privacy control frameworks
  • IT governance, risk, compliance (GRC), auditing, drafting security and/or privacy plans, and conducting risk assessments
  • HIPAA Business Associate provisions
  • HIPAA Privacy rule implementation
  • Hold one or more privacy or security certifications such as IAPP, CHPC, CIPP, CISA, CISM, CISSP
  • Undergraduate degree or 4 years' additional relevant experience
Job Responsibility
Job Responsibility
  • Analysis and comprehension of client’s overall privacy program and posture
  • Identifying and documenting detailed remediation recommendations
  • Understanding relevant laws and regulations for security and privacy requirements
  • Assist on policy reviews under direction of the Privacy Officer
  • Review documents, contracts and agreements to ensure compliance with regulatory requirements
  • Participate in assessments
  • Conduct independent research on behalf of the Privacy Officer
  • Help record and track subpoena requests
  • Research requests for changes in records for billing, SNAP, etc.
  • Assist completing audits (IRS, SS, FBI, FOIA, etc.)
What we offer
What we offer
  • Medical, dental, and vision insurance with an employer contribution
  • Flexible spending or health savings account
  • Life and AD&D insurance
  • Short and long term disability coverage
  • Paid time off
  • Employee assistance
  • Participation in a 401k program with company match
  • Additional voluntary or legally-required benefits
  • Fulltime
Read More
Arrow Right

Senior Cyber Security Analyst

At Boeing, we innovate and collaborate to make the world a better place. We’re c...
Location
Location
Australia , Enoggera
Salary
Salary:
Not provided
boeing.com Logo
Boeing
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Relevant degree or 6 years+ relevant experience in similar role
  • Prior Defence, aerospace or cyber industry experience (desirable)
  • Effective communication and interpersonal skills, and demonstrated ability to engage, influence and cooperate with a wide range of internal and external stakeholders
Job Responsibility
Job Responsibility
  • Defines, develops, integrates, designs and maintains security technical controls in a variety of IT environments and systems
  • Defines security product specifications tools and techniques for intrusion detection, intrusion prevention, data loss prevention, Encryption of data, Identity/Access management and authentication methods
  • Analyses security designs and recommends design solutions to lower security risk along with being knowledgeable of national and international privacy requirements
  • Reviews design data elements (threat models, data flow diagrams, requirements, etc.) along with known vulnerabilities associated with IT systems and creates designs and recommendations that lower or eliminate security risk
  • Leads the maintenance of the Apache Assessments and Authorisation
  • Capable of attaining AASB Engineering Authority: Design Engineer
What we offer
What we offer
  • Competitive base pay and incentive programs
  • Industry-leading tuition assistance program pays your institution directly
  • Resources and opportunities to grow your career
  • Up to $10,000 match when you support your favorite nonprofit organizations
  • Fulltime
Read More
Arrow Right

Epic Security Analyst

We are looking for an experienced Epic Security Analyst to support and strengthe...
Location
Location
United States , Oklahoma City
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree is required
  • At least 5 years of experience in information technology, healthcare systems, or a related field is required
  • Epic certification in one or more applications is required
  • Prior experience supporting Epic security, access management, or application administration in a healthcare setting is strongly preferred
  • Working knowledge of EHR platforms, application security practices, governance frameworks, and identity and access management concepts is required
  • Demonstrated ability to lead complex issue resolution, coordinate cross-functional teams, and manage multiple priorities effectively
  • Familiarity with healthcare operations and clinical or business workflows is needed to support effective system design and optimization
Job Responsibility
Job Responsibility
  • Serve as a lead resource for diagnosing and resolving high-level Epic security and application issues, including incidents that involve multiple technical teams
  • Partner with operational and IT stakeholders to define corrective action plans, coordinate response efforts, and drive timely resolution of system-related challenges
  • Oversee scheduled maintenance activities such as updates, patches, and upgrades to preserve system stability, performance, and data protection
  • Direct testing and validation for configuration changes, enhancements, and new releases, ensuring updates satisfy functional expectations and follow established change control practices
  • Contribute to long-range planning for Epic security and application strategy by working with leadership to support organizational priorities and improve service delivery
  • Identify opportunities to strengthen usability, interoperability, and overall system effectiveness by collaborating with stakeholders on enhancement planning and prioritization
  • Manage assigned projects related to Epic implementations, upgrades, and optimization efforts, including planning, execution, communication, and post-go-live support
  • Maintain and reinforce governance standards for Epic system administration, with attention to privacy, confidentiality, regulatory compliance, and data security requirements
  • Provide guidance and mentorship to less experienced analysts, helping build team capability through coaching, knowledge sharing, and day-to-day leadership support
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan
  • free online training
Read More
Arrow Right

Privacy Analyst

Fivetran is looking for a Privacy Analyst to join our global SaaS company and gr...
Location
Location
United States , Oakland
Salary
Salary:
141854.00 - 177317.50 USD / Year
fivetran.com Logo
Fivetran
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Understanding of technical issues (cookie management, encryption)
  • Experience writing business, functional, and technical requirements with specifications, including strong documentation skills
  • Strong data analysis and project management skills
  • Engineering background preferred, but not required
  • Experience with privacy regulations and industry standards, including GDPR, CCPA, CPRA, ISO27701, PCI-DSS, NIST, EU Data Act, EU NIS2, and UK NIS.
Job Responsibility
Job Responsibility
  • Manage projects related to ongoing compliance with privacy and data protection laws across business areas
  • Help develop, maintain, and scale processes, policies, procedures, technical controls, and playbooks that support global privacy and data protection program
  • Utilize project management and communication skills to help define scope, requirements, analyze data, and develop technical recommendations for program and operational execution
  • Drive greater consistency of process, practices, and execution across company-wide privacy and data protection work-streams
  • Work closely with privacy team members to further privacy governance, monitoring, reporting, and auditing on the ongoing initiatives of the privacy and data protection program
  • Develop the privacy and data protection program for a global technology company and ability to lead the continued development, maintenance and improvement of Fivetran’s global privacy program including effective policies, procedures, technical safeguards, and documentation
  • Contribute to a fast-paced environment and execute change management
  • Work cross-functionally throughout the organization including with product, security, engineering teams
  • Support the development of the strategy, delivery, and evaluation of the privacy program and data protection compliance
  • Embody process and relationship-building skills to accomplish the mission
What we offer
What we offer
  • 100% employer-paid medical insurance*
  • Generous paid time-off policy (PTO), plus paid sick time, inclusive parental leave policy, holidays, and volunteer days off
  • RSU stock grants*
  • Professional development and training opportunities
  • Company virtual happy hours, free food, and fun team-building activities
  • Monthly cell phone stipend
  • Access to an innovative mental health support platform that offers personalized care and resources in areas such as: therapy, coaching, and self-guided mindfulness exercises for all covered employees and their covered dependents
  • Fulltime
Read More
Arrow Right