Cyber Security Analyst

About Holcim

We are leaders in supplying innovative, sustainable building solutions to the UK construction industry; building progress for people and the planet.

Since 1858, we’ve helped shape the UK; powering the construction of homes and hospitals, roads and railways, schools and cities alike.

Our mission is to make sustainable construction a reality, through purposeful action that tackles real carbon and climate challenges. We are dedicated to helping Britain grow and thrive - by doing the right thing, doing it together, and making a difference.

Holcim UK Company Benefits

• Competitive Salary, plus bonus, 25 days holiday + your local bank holidays (with options to increase) and other benefits - all recognising the contribution you bring

• Be valued and supported, working as part of a highly respected team in a business that has a huge focus on Health & Safety

• We care about you and your family. That’s why we offer enhanced family benefits, including maternity, paternity, and adoption leave. We understand that your personal life and family well-being are just as important as your career, so we’re committed to supporting you every step of the way.

• Be part of something bigger with our "Women Empowered - Stronger Together Mentor Program," designed to support, inspire, and uplift women across the business.

• Free 24/7 remote GP service for you and your household, offering medical advice, prescriptions, referrals, and same-day appointments.

• Opportunities for career progression both at home and abroad

• Join our affinity groups selected by and populated by our employees which bring together employees with similar backgrounds and interests to have powerful influence on the workplace

• Staff discounts including special rates for garden landscaping products

The Opportunity

Looking to build a career where you can help shape the digital security landscape of a global business? Join Holcim UK as a Cyber Security Analyst and play a vital role in keeping our systems, data, and people protected in an ever-evolving threat environment.

This is more than just a technical role—it’s your chance to collaborate across teams, drive continuous improvement, and help ensure cyber security is embedded into everything we do. You’ll be hands-on with incident response, vulnerability management, audits, awareness campaigns, and more, all while learning and growing within a global network of industry experts.

Whether you're early in your cyber security journey or bringing experience with you, if you're passionate about protecting people and systems, this is your opportunity to make a lasting impact.

Key Responsibilities

• Support and evolve our Cyber Security Management System (CSMS), contributing to policy and process development and reporting on performance.

• Lead the vulnerability management process—from detection and triage to remediation tracking and risk reporting.

• Monitor and respond to security incidents, investigate threats, maintain response plans, and support post-incident reviews.

• Conduct risk assessments, support audit remediation, and ensure alignment with standards such as Cyber Essentials, NIST, GDPR, and internal frameworks.

• Support third-party risk management, including vendor due diligence and client security questionnaires.

• Champion security awareness campaigns and provide clear, practical advice to colleagues at all levels.

• Represent cyber security in key projects, providing advice on system design and supplier risks.

• Stay up to date with industry trends, new threats, and emerging technologies—and help us stay one step ahead.

Who You Are

• You have a curious mindset and enjoy learning about emerging threats and how to protect against them.

• You understand the foundations of IT systems and networks, and you’re comfortable discussing technical topics with others.

• You’re organised, methodical, and can manage and improve processes with confidence.

• You can explain complex topics clearly—whether writing documentation or talking to non-technical teams.

• You have some experience or strong interest in areas like incident response, vulnerability management, or security governance.

• You’re proactive and adaptable, happy to work with different teams and jump into new challenges.

Desirable (but not essential)

• Previous experience in a dedicated information or cyber security role.

• Familiarity with tools like SIEM, EDR, or vulnerability scanners.

• Awareness of ISO 27001, PCI DSS, Cyber Essentials, or similar security frameworks.

• Any relevant certifications (e.g. Security+, CISSP, CISM) or ongoing personal development in the cybersecurity space.

We are committed to building a diverse environment and are proud to be an equal opportunity employer. You will receive consideration for employment without regard to race, religion, gender, gender identity or expression, sexual orientation, national origin, disability or age.