Junior Cyber-Security Controls Analyst

About Convatec
Pioneering trusted medical solutions to improve the lives we touch:
Convatec is a global medical products and technologies company, focused on solutions for the management of chronic conditions, with leading positions in Advanced Wound Care, Ostomy Care, Continence Care, and Infusion Care. With more than 10,000 colleagues, we provide our products and services in around 90 countries, united by a promise to be forever caring. Our solutions provide a range of benefits, from infection prevention and protection of at-risk skin, to improved patient outcomes and reduced care costs. Convatec's revenues in 2024 were over $2 billion. The company is a constituent of the FTSE 100 Index (LSE:CTEC). To learn more please visit

The Cyber Security Controls Analyst supports the day-to-day operation of security controls, systems, and processes that protect Convatec's information assets. This role manages digital certificates, helps maintain key cyber controls in line with company standards and compliance frameworks, and supports the wider security teams in maintaining critical cyber systems.

This position is ideal for someone early in their cybersecurity career who is process-driven, technically curious, and eager to learn from experienced analysts and engineers.

Main Responsibilities:
Critical Cyber Controls

• Perform reviews of technical configurations to ensure critical systems remain protected, document findings, and work with technical teams to resolve identified gaps.
• Conduct periodic privileged access reviews in alignment with good practice and company policy, ensuring elevated accounts are justified, approved, and revalidated regularly.
• Review and test critical controls designed to protect against data loss.
• Review assets to ensure the correct version of security tooling has been deployed, and work on corrections where appropriate.

Digital Certificates & Cryptographic Assets

• Maintain the inventory of digital certificates and cryptographic keys across internal and external systems.
• Track certificate expirations and coordinate timely renewals to prevent service disruption.
• Support automation and monitoring of certificate lifecycles where possible.
• Assist in implementing good key management practices in collaboration with infrastructure teams.

Ongoing Cyber Control Reporting

• Participate in regular control assurance and continuous improvement activities.

DNS Management and Assurance

• Validate DNS records supporting email security (SPF, DKIM, DMARC) and web applications (CNAMEs for CDNs, etc.) are correctly configured.
• Periodically review DNS zones and records (e.g., A, CNAME) to ensure entries are current, valid, and aligned with active services.
• Identify and remove stale, duplicate, or orphaned records associated with decommissioned systems or domains.

Supporting Ongoing Cyber Compliance Activities

• Assist in the annual re-certification of cybersecurity certifications and audits.

Key Requirements:

• Bachelor's degree in cybersecurity, computer science, Information Systems, Software Engineering, or equivalent experience.
• 1–2 years of experience in IT operations, service desk, or a security support role.
• Studying toward or holding an entry-level certification (e.g., CompTIA Security+, Microsoft SC-900, or similar).
• Experience with certificate management or access control systems is an advantage.
• Knowledge of ticketing systems and standard ITIL practices beneficial.
• CISSP or equivalent certification would be ideal.

Beware of scams online or from individuals claiming to represent Convatec
A formal recruitment process is required for all our opportunities prior to any offer of employment. This will include an interview confirmed by an official Convatec email address.

If you receive a suspicious approach over social media, text message, email or phone call about recruitment at Convatec, do not disclose any personal information or pay any fees whatsoever. If you're unsure, please contact us at

Equal opportunities
Convatec provides equal employment opportunities for all current employees and applicants for employment. This policy means that no one will be discriminated against because of race, religion, creed, color, national origin, nationality, citizenship, ancestry, sex, age, marital status, physical or mental disability, affectional or sexual orientation, gender identity, military or veteran status, genetic predisposing characteristics or any other basis prohibited by law.

Notice to Agency and Search Firm Representatives
Convatec is not accepting unsolicited resumes from agencies and/or search firms for this job posting. Resumes submitted to any Convatec employee by a third party agency and/or search firm without a valid written and signed search agreement, will become the sole property of Convatec. No fee will be paid if a candidate is hired for this position as a result of an unsolicited agency or search firm referral. Thank you.

Already a Convatec employee?
If you are an active employee at Convatec, please do not apply here. Go to the Career Worklet on your Workday home page and View "Convatec Internal Career Site - Find Jobs". Thank you