top of page

Graduate Security Analyst

Student Loans Company

Full-time

Glasgow

Hybrid

£30,252

to

Application closing date:

Feb 28, 2026

About the organisation

    Student Loans Company is a non-profit making Government-owned organisation to provide loans and grants to students in universities and colleges in the UK. Since 1989, we have enabled our customers to invest in their futures by delivering secure, accurate and efficient assessment, payment and repayment services.

About the vacancy

    The Security department at SLC brings together a wide range of specialist teams, all working collectively to safeguard the organisation from threats and to protect SLC’s technical infrastructure and data at every level.

    As a Graduate Cyber Security Analyst, you’ll play an important role in supporting day‑to‑day operational activity, contributing to continuous improvement work, and helping deliver key projects within Security or across wider business initiatives. As part of this 24‑month rotational programme, you’ll gain hands‑on exposure to critical business activities while developing core skills aligned to Cyber Security.

    If you’re driven by problem‑solving, excited by technology, and motivated by helping protect systems and data that millions rely on, this programme is designed for you.

    Through a mix of structured learning and real on‑the‑job experience, you’ll build strong technical knowledge, develop professional confidence, and contribute meaningfully to strengthening SLC’s security posture.

    During the programme, you’ll rotate through six specialist teams — Security Operations, Engineering, Governance, Assurance, Identity, and Risk — giving you unparalleled exposure to the full breadth of modern security disciplines. This rotational experience will help you understand how each area works together to defend the organisation and manage threats proactively.

    This is a fantastic opportunity to explore diverse security specialisms before deciding where you want to build your career, while working in an environment that takes your development seriously.

    You’ll collaborate closely with experienced professionals, receive ongoing coaching and mentorship, and take part in activities that support and enhance SLC’s security capabilities across the organisation.

Key Responsibilities

Key Competencies

    Essential
    • Ability to:
    o communicate and collaborate effectively with colleagues and customers by actively listening and delivering quality information timely
    o manage, interpret, and use data to support decision making and drive effective outcomes
    o use digital tools and technologies to communicate, access information, and solve problems
    o identify, assess and manage risks to minimise potential impacts
    o demonstrate readiness to new ways of working and remain effective in ambiguous situations while identifying opportunities for continuous improvement

    • A clear interest in Cyber and Information Security
    • Awareness of common security threats and the importance of common security concepts (RBAC, Encryption, Secure Protocols, Vulnerability Management, Logging and Monitoring etc) via education or experience
    • Understanding and basic experience of infrastructure systems administration (UNIX, Windows) and common Networking protocols via education or experience
    • Awareness of security frameworks and standards such as CAF, NIST, PCI DSS and OWASP via education or experience
    • Effective problem-solving skills and attention to detail
    • Ability to follow documented procedures and contribute to technical documentation

    Desirable
    • Internship or placement experience in a related field
    • Industry recognised certifications relating to Information Security, cloud services or networking
    • Membership with a relevant professional body (e.g. ISC2, ISACA, BSC)
    • Ability to triage, escalate and remediate security incidents based on criticality
    • An understanding of a wide range of security controls such as PAM, NAC, IAM, XDR etc
    • Understanding of cloud platforms and their security features (AWS, Azure)
    • Understanding of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy
    • Awareness of Risk Management methodologies, and risk assessment techniques, e.g. risk appetite, gap analysis, control identification and implementation

Desired Qualifications

    Essential:
    Degree-level qualification in Cyber Security, Networking or related field at 2.2 and above, anticipated by Summer 2026 or gained within the last two years.
Student Loans Company

How to Apply

Click on the Application Form button to be directed to the application page.

bottom of page