About The Opportunity
Job Type: Permanent
Application Deadline: 30 September 2025
Job Description
Title CDO - Insider Risk - Technical Analyst
Department FIL – Cyber Defence Operations
Location Kingswood
Reports To CDO - Insider Risk Senior Manager
Level 3
We share a commitment to making things better for clients and each other. We continually explore new technology and different ways of working to put our clients first. So bring your boldest ideas to our Cyber Defense Operations team and feel like you’re making progress.
About Your Team
Technology function across FIL is responsible for all global aspects of Technology, Digital, Cybersecurity, and Innovation. Fidelity is a value-driven, customer-obsessed organization and in Technology we are fortunate to play a direct role in helping our clients with one of the most important aspects of their lives – their financial well-being.
Within the Technology function is our Global Cyber & Information Security (GCIS) that operates enterprise security services and controls. These are designed to mitigate Cyber and Information Security risks ensuring that Fidelity's business operates securely. The Technical Cybersecurity teams monitor both the internal and external threat environment, responding to security alerts and events in close to real time, as well as providing security assurance and access management services across the enterprise technology and business environment. Our global innovative Cyber Defence Operations team sits within GCIS and provides proactive, cutting-edge solutions to protect clients’ digital assets and infrastructure against evolving cyber threats.
The Insider Risk team within our Cyber Defence Operations focuses on the design development and operations of the Insdier Risk activities including the data loss prevention controls. They ensure we implement comtrols to protect the FIL sensitive data from exfiltrating to the external sources. Insider Risk team also focus on development of automated detection capabilities to reduce manual effort of the Data Loss Preventions Operations. Ensure the operations are completed in the timely manner, coordinate with business stakeholders to contain the data loss.
About Your Role
The Insider Risk Technical Analyst plays a critical role in data loss prevention security operations, understanding the importance of the data loss controls, insider risk policies and how these protects the sensitive business data and can enhance an analyst response to events. This is a critical role expected to monitor, review and data loss and insider risk controls portfolio and help mature our monitoring and response processes.
The successful candidate will be comfortable working at a technical level, reviewing and monitoring the data loss events in the company and work with the business stakeholder in containing the data loss events. Will also demonstrate working with different tools and technologies in the Data Loss and Insider Risk space. Our leadership team will be looking at this role to bring out any automation and fine tuning opportunities for the team to deliver on.
About You
Key Responsibilities
The Insider Risk - Technical Analyst will be responsible to:
- Ensure data loss events from multiple tools are timely reviewed within the SLA times.
- Work with the user management and stake holders in containing the data loss incidents.
- Escalate to the relevant stakeholders/teams in solving the data loss cases.
- Working as part of a global insider risk team to deliver solutions to reduce manual dependencies on the workload.
- Proactively identify the policy fine tuning opportunities from Business As Usual (BAU) activities.
- Ensure the documentation is followed, improve documentation of the case resolution where possible.
- Work on technical implementations of the controls in various tools.
Experience And Skills Required
- At least 4 years of experience working in a SOC or Incident Response position, most of it in data loss teams.
- At least 2 year of working experience in Microsoft Purview tools including implementing the policies
- Knowledge of or experience working with security solutions - Proxy, SIEM, DLP, SOAR
- Experience explaining the risk of security threats and creating mitigations.
- Experience of general IT infrastructure technologies and principles.
- Experience in designing and implementation of the Data loss controls in industry known tools (e.g. Microsoft Purview, Proof Point, Zscaler)
- Experience in working on SIEM and SOAR platforms.
- Reporting ability, with an understanding on how to tailor reports to show capacity and efficiency improvements
- Understanding of how business data can be exfiltrated outside the enterprise.
- Banking or Finance industry related experience desirable
Feel rewarded
For starters, we’ll offer you a comprehensive benefits package. We’ll value your wellbeing and support your development. And we’ll be as flexible as we can about where and when you work – finding a balance that works for all of us. It’s all part of our commitment to making you feel motivated by the work you do and happy to be part of our team. For more about our work, our approach to dynamic working and how you could build your future here, visit careers.fidelityinternational.com.
For more about our work, our approach to dynamic working and how you could build your future here, visit careers.fidelityinternational.com.
As an international financial services organisation, we are in-scope of international regulations in the way that we carry out our work. This position is involved in work that is regulated by the FCA and/or the PRA and their Individual Conduct Rules (COCON) apply to it, along with any other regulation. We provide training on COCON and how it affects our employees. More information about COCON can be found in the Employment Handbook. 
