IT Analyst, Information Security

Shape the Future with the National Wealth Fund

At the National Wealth Fund, our mission is to swiftly and effectively mobilise trusted sector insights and investment expertise to unlock billions in private finance for projects across the United Kingdom. Providing £27.8bn of capital and an expanded mandate, we are ready to help the market invest with confidence, continue to drive forward the Government's growth ambitions.

We are looking for skilled and results oriented individuals who are motivated to help us build the National Wealth Fund into an industry-leading institution.

Job Purpose

Support NWF’s IT Risk & Security function by monitoring and analysing security information across a cloud-first, SaaS-enabled environment. Working under the direction of the IT Risk & Security Lead and/or Senior Analysts, help identify threats and vulnerabilities across Microsoft 365 (including Defender, Entra ID, Purview and Copilot) and wider SaaS services, and support the operation and continuous improvement of effective security controls. Provide information security services including incident triage and response support, risk and compliance reporting, and security administration activities.

This is a hands-on role supporting NWF’s security operations and governance activities. On a typical day you will be monitoring and triaging alerts and investigations in Microsoft 365 (including Defender), responding to general security support queries and service requests from colleagues, and supporting the coordination of incidents (logging, evidence capture, timelines and follow-ups). You will also spend time producing clear status updates and metrics, keeping documentation and runbooks up to date, and helping the team apply security controls across Entra ID, Purview, Copilot and wider SaaS services. The role works closely with IT colleagues and suppliers, escalating risks and issues to the IT Risk & Security Lead / Senior Analyst and helping to track remediation through to completion.

This role is designed to build practical, in-demand security skills through day-to-day exposure to modern, cloud-first technology and ways of working. You’ll work with and learn from

experienced security colleagues, developing confidence in incident support, governance, and the application of security controls. You will gain hands-on experience across Microsoft 365 security capabilities (including Defender, Entra ID and Purview) and develop an understanding of how Copilot and wider SaaS services can be adopted securely. There will be opportunities to contribute to continuous improvement (e.g., improving runbooks, reporting, automation ideas and control checklists), and to support relevant training and certifications aligned to the role.

Location: Hybrid working with a minimum of 3 days per week in the Leeds office

Deadline to Apply: 1st July 2026. Early submission is encouraged, and applications will be reviewed on an ongoing basis

Salary: £30,000 - £35,00

Core Responsibilities:

• Provide support to NWF’s IT Risk & Security function, working under the direction of the IT Risk & Security Lead and/or Senior Analyst.
• Monitor and triage security alerts and events (primarily across Microsoft 365, including Defender); investigate and escalate in line with documented procedures.
• Support security incident management activities, including logging, evidence capture, timelines, communication support, and post-incident reporting.
• Respond to security support requests from colleagues (e.g., advice on secure ways of working, suspected phishing/malicious content, access and sharing questions, and Copilot/M365 security queries), resolving where appropriate and escalating in line with agreed processes.
• Assist with operational security administration tasks within agreed permissions and processes (e.g., user/guest access controls, Entra ID-related activities, and policy/configuration checks as directed).
• Support the use of Microsoft Purview capabilities (e.g., information protection / sensitivity labels, data governance tasks) and help track exceptions, issues, and actions.
• Support security-by-design / change activities by completing defined checks (e.g., review of SaaS onboarding requests, configuration questionnaires, or control checklists) and escalating risks/concerns.
• Track and support remediation actions arising from incidents, risk assessments, vulnerability findings, supplier assurance, and audit activity; follow up and report progress.
• Help maintain and improve security documentation (procedures, runbooks, knowledge articles) so standard processes are repeatable and auditable.
• Support the maintenance of information security governance artefacts (e.g., risk registers, control attestations, evidence packs) and produce accurate metrics and status reporting.
• Assist with internal and external audit requests by collating evidence and coordinating responses with relevant teams and third parties.
• Support operational security tasks such as phishing reporting/analysis, user guidance, and handling suspected malicious emails in line with policy.
• Maintain awareness of emerging threats and relevant M365 / cloud security features (including Copilot-related security considerations) and share practical improvements with the team.

Knowledge, Skills & Experience

Essential

• Practical experience supporting information security operations and/or information security risk management activities.
• Working knowledge of Microsoft 365 and cloud concepts, with an interest in the security capabilities across Defender, Entra ID, Purview and related services.
• Experience handling security alerts, incidents, or service requests using defined processes (including logging, triage, investigation support, escalation, and reporting).
• Understanding of common security control areas (identity and access management, endpoint/email security, data protection, logging/monitoring, and vulnerability management).
• Comfortable working with data to produce clear insights, metrics, and reporting (e.g., trends, KPIs, and action tracking).
• Working knowledge of security frameworks/standards and how controls are evidenced (e.g., NIST, ISO 27001, Cyber Essentials).
• Strong written and verbal communication skills, including the ability to document procedures and explain risk/issues in a clear, non-technical way.
• Good investigative and problem-solving skills, attention to detail, and ability to manage workload and escalate appropriately.

Desirable

• Hands-on experience with Microsoft security tooling such as Microsoft Defender, Entra ID, Purview, and/or related security admin centres.
• Awareness of security considerations and controls for Copilot and GenAI features in Microsoft 365 (e.g., permissions, data access, and information protection).
• Understanding of data protection responsibilities and practical application (including UK GDPR).
• Experience supporting SaaS onboarding / supplier assurance activities (e.g., security questionnaires, evidence collation, tracking remediation actions).
• Relevant professional qualification or certification (e.g., Security+, SSCP, SC-900, AZ-900, or similar).
• Experience in a regulated environment and/or familiarity with audit and compliance expectations.

Interpersonal

• Strong communication and engagement skills, with the ability to work effectively with technical and non-technical stakeholders.
• Collaborative approach and ability to build effective working relationships across IT, suppliers, and the wider business.
• Self-motivated and organised, with a continuous improvement mindset and comfort working to objectives and deadlines.
• Comfortable taking direction, asking questions, and escalating issues appropriately.

A career with us offers a unique opportunity to make a lasting impact and work on cutting-edge technologies that will drive the UK’s future. We value diversity in our people and inclusion is at the heart of what we do.

We offer competitive benefits and unique learning opportunities from combining both private and public sector skills and experience. Please note, referencing and background checks are carried out for all roles here at the National Wealth Fund.