Nice
Nice7h ago
New

Senior Trust Security Analyst

United Kingdom - Londonsenior
Security AnalystCybersecurity
2 views0 saves0 applied

Quick Summary

Key Responsibilities

Serve as the primary point of contact for UK Sovereign customers on all matters related to security posture, vulnerabilities, remediation activities, and trust documentation.

Requirements Summary

Read and interpret third-party audit reports (SOC 2 Type II, ISO 27001, penetration test summaries) and represent findings to customers in questionnaires and security responses.

Technical Tools
Security AnalystCybersecurity

At NiCE, we don’t limit our challenges. We challenge our limits. Always. We’re ambitious. We’re game changers. And we play to win. We set the highest standards and execute beyond them. And if you’re like us, we can offer you the ultimate career opportunity that will light a fire within you.

The Senior Trust Analyst — UK Sovereign sits at the intersection of security, sales, and customer success, serving as the primary trust and security point of contact for our UK Sovereign customers. This role owns the response to customer security inquiries and questionnaires, supports contract reviews on security and privacy terms, and acts as a trusted advisor on the security posture of our UK Sovereign environments.

In addition to traditional Trust Analyst responsibilities, this role serves as the dedicated liaison between UK Sovereign technical security teams and customers, ensuring transparency, trust, and proactive communication. The Senior Trust Analyst will track and report vulnerability remediation activities in a structured Plan of Action and Milestones (POA&M) format, deliver regular security status updates, and translate complex technical information into clear, customer-ready communications.

This is a senior, customer-facing position critical to building and sustaining trust with UK government and regulated sector customers, accelerating deal cycles, and reinforcing the integrity of our UK Sovereign security program.

  • Trusted Advisor: Serve as the primary point of contact for UK Sovereign customers on all matters related to security posture, vulnerabilities, remediation activities, and trust documentation.
  • Security Questionnaires: Support end-to-end responses to customer and prospect security questionnaires (SIG, CAIQ, VSA, MoD/UK government questionnaires, and bespoke enterprise formats), ensuring accurate, timely, and consistent answers tailored to UK Sovereign context.
  • Responder: Help respond to inbound customer security inquiries via email and ticketing, translating technical controls into clear business language for both technical and non-technical stakeholders.
  • Trust Portal & Documentation: Maintain the public trust center and UK Sovereign customer-facing documentation, ensuring security whitepapers, certifications, and standard responses remain current and reusable.
  • Security Posture Assessment: Collaborate closely with UK Sovereign technical and engineering teams to understand and assess the current security posture of UK Sovereign environments.
  • POA&M Reporting: help support vulnerability remediation status in a structured Plan of Action and Milestones (POA&M) format, documenting identified vulnerabilities, planned remediation steps, responsible parties, target completion dates, and progress against agreed timelines.
  • Monthly Customer Reporting: help prepare and deliver monthly security status updates to UK Sovereign customers, including progress on scheduled remediation items and key security metrics.
  • Remediation Oversight: Monitor and track remediation activities across engineering and security teams, ensuring alignment with agreed timelines and compliance requirements.
  • Audit Interpretation: Read and interpret third-party audit reports (SOC 2 Type II, ISO 27001, penetration test summaries) and represent findings to customers in questionnaires and security responses.
  • Information Translation: Gather detailed technical information from engineering and security teams, then convert and filter it into clear, concise, and structured updates accessible to both technical experts and non-technical stakeholders.
  • Customer Meetings: participate in security review meetings, capture feedback and action items, and ensure timely follow-up and resolution by technical teams.
  • Cross-Functional Coordination: Coordinate input from internal teams to validate questionnaire answers and resolve gaps between stated controls and operational reality.

 

  • Citizenship & Clearance: UK citizenship and ability to pass and maintain SC clearance.
  • Experience: 5+ years in a security, GRC, trust, or technical customer-facing role, with direct ownership of security questionnaires, customer inquiries, and security reporting.
  • Questionnaire Expertise: Hands-on experience responding to SIG, CAIQ, VSA, and bespoke enterprise/government security questionnaires.
  • Compliance Knowledge: Working knowledge of Cyber Essentials Plus, ISO 27001, SOC 2 Type II, and at least one of PCI DSS, GDPR/UK GDPR, HIPAA, or FedRAMP.
  • Technical Expertise: Strong technical understanding of security principles, architecture, and vulnerability management, including access control, encryption, incident response, network security, and secure SDLC.
  • Cloud & SaaS: Familiarity with cloud infrastructure (AWS, Azure, or GCP) and SaaS security models.
  • Communication: Exceptional written and verbal communication skills, with proven ability to translate complex technical controls for non-technical audiences (procurement, legal, executives, government stakeholders).
  • Customer Relations: Proven experience in customer-facing roles within security or technology sectors, ideally including regulated or government customers.
  • Organisational Skills: Demonstrated ability to manage a high-volume queue, set priorities, and drive multi-stakeholder responses to deadline.
  • Education: Bachelor's degree in a relevant field, or equivalent practical experience.
  • Discretion: Proven ability to handle confidential customer and company information with integrity and discretion.
  • Professional cybersecurity certifications (e.g., CISSP, CISM, CISA, CCSK, ISO 27001 Lead Auditor, Security+).
  • Experience working with UK Sovereign, MoD, or UK government environments.
  • Familiarity with POA&M processes and structured vulnerability remediation reporting.
  • Experience with trust portal platforms (ServiceNow, Whistic, Vanta Trust, Drata Trust).
  • Familiarity with AI/ML security and emerging frameworks (NIST AI RMF, ISO 42001).
  • Previous leadership or line management experience.
  • Integrity and discretion when handling sensitive customer and government information.
  • Resilience and adaptability in dynamic, high-pressure regulated environments.
  • Proactive, self-motivated, and committed to continuous improvement.
  • Fast learner with a demonstrated ability to self-educate on new technologies, products, and evolving security frameworks.
  • Collaborative working style across technical, legal, sales, and customer-facing teams.

 

Requisition ID: 11195

Reporting into: Director, Cloud Information Security and Architecture 

Role type: Individual contributor 

#LI-Hybrid

About NiCE

NICE Ltd. (NASDAQ: NICE) software products are used by 25,000+ global businesses, including 85 of the Fortune 100 corporations, to deliver extraordinary customer experiences, fight financial crime and ensure public safety. Every day, NiCE software manages more than 120 million customer interactions and monitors 3+ billion financial transactions.

Known as an innovation powerhouse that excels in AI, cloud and digital, NiCE is consistently recognized as the market leader in its domains, with over 8,500 employees across 30+ countries.

NiCE is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, age, sex, marital status, ancestry, neurotype, physical or mental disability, veteran status, gender identity, sexual orientation or any other category protected by law.

 

Location & Eligibility

Where is the job
United Kingdom - London
On-site at the office
Who can apply
Same as job location

Listing Details

Posted
July 1, 2026
First seen
July 1, 2026
Last seen
July 1, 2026

Posting Health

Days active
0
Repost count
0
Trust Level
67%
Scored at
July 1, 2026

Signal breakdown

freshnesssource trustcontent trustemployer trust
Nice
Nice
greenhouse

NICE Ltd. specializes in customer experience management with a focus on AI-driven solutions.

Employees
8k+
Founded
1986
Domain
nice.com
View company profile
Newsletter

Stay ahead of the market

Get the latest job openings, salary trends, and hiring insights delivered to your inbox every week.

A
B
C
D
Join 12,000+ marketers

No spam. Unsubscribe at any time.

NiceSenior Trust Security Analyst