Financial Conduct Authority careers 2022 in London, England, United Kingdom – Cyber Security Specialist – Technology Resilience and Cyber

Website Financial Conduct Authority

Are you looking for a Job at Financial Conduct Authority in London, England, United Kingdom
in 2022. Then following info is about this job.

About the job

We are looking for a Specialist – Associate to join The Technology, Resilience and Cyber Department (TRC) here at the Financial Conduct Authority (FCA). You will work on technology and cyber resilience related matters across firms regulated by the FCA. At a time of rapid technology change and increasing cyber threats, you will have the opportunity to influence the FCA’s and industry’s agenda to work in the public interest and increase the sector’s operational resilience.

The role of TRC is to understand firms’ current and planned use of technology, identify and assess potential harm and risk to the market and promote good practice by clarifying our expectations and acting when necessary. This includes seeking to minimise the impact on consumers and the markets when risks crystallise. A key part of this strategy is for TRC to lead assessments for all firms that are prioritised for attention. These roles are ideal positions to demonstrate your cybersecurity specialist expertise and to leverage this expertise to support the FCA objectives.

A key area for the role will b in support of our CBEST framework. CBEST delivers controlled and bespoke intelligence led penetration testing across the top priority and systemically critical firms that we regulate. Jointly developed by the Financial Conduct Authority (FCA) and Prudential Regulation Authority (PRA). The tests replicates behaviours of threat actors identified by Government and Intelligence providers.

What does this job involve?

  • Contributing to cybersecurity awareness across the team, wider department and the FCA
  • Ensuring delivery of CBEST tests for prioritised high impact firms and providing supervisors with evidence and judgement-based assessment on a firm’s technology, resilience and/or cyber capabilities. Importantly, highly technical elements need to be summarised, explained in plain English, and put in context to enable supervisory colleagues to engage appropriately through the process and to agree and track further mitigatingemediating actions.
  • Contributing to thematic work, owning delivery of key items such as reports, presentations and coordination of communications to firms.
  • Taking part in technical engagement with external stakeholders including other Authorities, accredited commercial test providers and Senior firm representatives.
  • Supporting CBEST and department’s forward planning activities and risk management (including the day-to-day protection of highly sensitive information).
  • Undertaking peer comparison and analysis of the maturity of firms’ technology and cyber environment in relation to other firms in the sector and the wider market

What will I get from the role?

Excellent opportunity to work across a number of high impact firms and cross-sector Cyber and Technology issues.

As an Academy business, we place great value on your learning and we offer world-class development opportunities which will assist you in achieving your career aspirations. Our Academy offers you a range of opportunities for personal and professional development, including our MSC in financial regulation, Future Managers programme, sponsored study and more.

Which minimum, essential & desirable skills are required?


We’re a signatory to the Government’s Disability Confident scheme. This means that we will offer an interview to disabled candidates entering under the scheme, should they meet the minimum criteria for a role. A minimum criterion needs to be measurable from reviewing a candidate’s CV. Exceptions may apply if due to the volume of applications we are not able to interview all eligible candidates who qualify under the scheme.

  • Relevant industry qualifications e.g. CRISC, CISM, CISSP, Certified Ethical Hacker (CEH), Certified Simulated Attack Specialist (CCSAS) or alternatives.
  • Experience analysing complex information and identifying and presenting recommendations in relation to technology and/or cyber resilience capabilities.


  • Excellent verbal and written communication skills.
  • Exposure to and understanding of leading cyber and technology standards.
  • Strong analytical capability with appropriate application of judgement and diligence; can demonstrate taking pride in work and ensuring it is of the highest standard.
  • Current Security Clearance (SC) or willingness to promptly obtain SC.


  • Understanding of offensive security testing and/or defensive security operations, for example having worked in either a red team or blue team environment.
  • Experience of applying regulatory approach to Operational Resilience, Technology and/or Cyber risks.
  • Experience of the CBEST framework.
  • Knowledge or experience of financial services industry.
  • Understanding of the common threats facing the financial services industry

About The FCA

At the FCA, we’re creating a fair and more resilient financial system. We’re establishing more transparent relationships between financial services and their customers, building trust in financial markets and protecting vulnerable consumers.

The Technology, Resilience and Cyber department is a team of specialists that sits within the Specialist Supervision Division. There are three teams providing sector-aligned support and advice to frontline supervisors. Each team leads on delivering resilience assessments on high impact firms in the relevant sectors, working alongside frontline supervisors. Each team is a centre of expertise within the FCA and provides specialist support to various areas across the FCA (such as Authorisations and Innovate) to increase the resilience of firms and markets to cyber threats and wider operational disruption.

The Department works regularly with other regulatory bodies in the UK including the Bank of England (BoE), the Prudential Regulation Authority (PRA) and Her Majesty’s Treasury (HMT). We also work with European and global regulatory colleagues on a range of technology and operational resilience supervisory topics and one of these roles will focus on driving engagement in Europe and globally on cyber issues. We also liaise closely with the National Cyber Security Centre and other government and industry-led cyber fora.

Useful Information

  • The job family for this role is Associate 1
  • Applications for this role close on 12th April 2022
  • If you are an internal candidate and interested in learning more about the role please contact Linda Bradley.
  • If you are an external candidate and interested in learning more about the role please contact [email protected]
  • The FCA has a national role and is committed to a national footprint. This role can be based in London or Edinburgh
  • The FCA has London and National Pay ranges to reflect regional differences. The salary for this role will be:
  • London – up to £53,000 plus a competitive flexible benefits package.
  • National – up to £47,000 plus a competitive flexible benefits package

The FCA is currently trialling a new hybrid way of working, requiring colleagues to spend 40% of their time in the office each month until the end of July. This trial period will allow us to identify the most appropriate balance of hybrid working, enabling us to benefit from the best of both working in an office environment and remotely

The Financial Conduct Authority (FCA) has recently set out a new employment offer designed to reward strong, consistent performance, aid career development and close pay gaps.

This follows an extensive, wide-ranging and comprehensive consultation with all FCA colleagues and the FCA’s Staff Consultative Committee. The changes, including updates to the proposals consulted upon, will mean that the FCA continues to provide one of the best reward packages of any regulator or enforcement agency in the UK.

If you have any questions please speak to your recruiter or visit the FCA website (or intranet for internal colleagues).

Company: Financial Conduct Authority

Vacancy Type: Full-time · Entry level

Job Location: London, England, United Kingdom

Application Deadline: N/A

Apply Here

To apply for this job email your details to