Information Security Analyst

Information Security Analyst

I am working on behalf of an excellent Financial Services firm, who are currently seeking an Information Security Analyst to come and join the wider Security team.

Sitting in the second line of the Security team, this role will involve investing potential data breaches, coordinating alerts from threat intelligence providers, and acting against any internal potential threats which may occur.

Other aspects of this role will involve but not be limited to the following:

• Organizing Information Security Education and Awareness campaigns, including activities like Phishing simulations and producing regular and ad-hoc reports on Group metrics.
• Analyzing controls within the internal environment and assessing risks with Third Party.
• Ensuring Information Security requirements are met when engaging new service providers or tools.
• Promoting Information Security awareness within the organization.
• Identifying and implementing improvements in Information Security due diligence processes.
• Assisting with Education and Awareness campaigns, including training programs throughout the year.
• Collaborating with IT to enhance security controls and adapt to the changing cyber threat landscape.
• Preparing Management Information and Key Risk Indicators related to the Risk & Control program.

Qualifications

At least 3 years of experience in risk management, Information Security, or IT roles.

Strong written and verbal communication skills – the ability to convey security and risk-related concepts to both technical and non-technical audiences.

An understanding of ISO27000 and NIST CSF would be desirable.

Desirable qualifications like ISACA CISA or CRISC.

This is a hybrid role (4 days in office, 1 day working from home).

Up to £60,000.

If you are proactive, want to work in a dynamic and interesting environment, you will be a great fit for this role.