24 of 24 Information Security Analyst Jobs in the UK excluding London

Information Security Compliance Analyst Permanent Hybrid - Hertfordshire As an Information Security Compliance Analyst, you will support the development and maintenance of the EMEA wide information security management system in accordance with Global EIT strategy, EMEA business requirements and relevant information security legislation, including NIS 2, AI Act and GDPR. You … management system and adherence by the EMEA EIT department to all relevant legislation and regulations, including but not limited to Health and Safety, Financial and Privacy laws. Conduct information security, information system, and compliance-based risk assessments, evaluate responses and recommend risk treatment actions Develop and execute risk mitigation plans in conjunction with relevant internal and external … stakeholders/groups and to agreed timescales, following through to completion Support the creation, implementation and maintenance of information security policies and standards, in accordance with ISO 27001 other relevant frameworks and standards (NIST CSF, IEC 62443, CIS, GDPR etc.) Maintain the departments information security procedures, including but not limited to information security incident More ❯

Job summary We are seeking a highly skilled and motivated Information Security Analyst to join our Digital Data & Technology (DDaT) team. This is a pivotal role supporting the Chief Information Security Officer (CISO) in delivering cyber security services across the Trust and wider health and care system. The role will support the CISO in … delivering digital safety, security and overall improvement, adhering to the Target Operating Model. The Information Security Analyst will manage the delivery of all cyber security related services. This will include cyber risk management, Data Security Protection Toolkit (DSPT) compliance against cyber relatedassertions, policy and procedure lifecycle management, and ensuring theTrust's information compliance … adheres to the Cyber Assurance Framework (CAF) and ISO27001. Main duties of the job Provide expert guidance on the selection, design, justification,implementation and operation of Cyber Security strategies, technologies,processes, procedures and standards. Support the development of controlsand management approaches to maintain the safety, confidentiality,integrity, availability and security of the Trust's digital infrastructure andsystems; including More ❯

Information Security Analyst Hyrbrid Working Offered **Note Preference will be given to candidates from a financial services/banking environments** Salary: Up to £65,000 Purpose of the Role Supporting the organisation’s Information Security function by helping to develop, operate, and improve its Information Security Management System (ISMS). The role is … responsible for providing advice, assurance, and oversight to reduce risks that could compromise the confidentiality, integrity, and availability of business systems and data. Experience in designing and monitoring security controls is essential, supporting compliance with industry standards and regulation, and ensuring alignment with group-wide information security practices. Key Responsibilities Carry out assurance activities to measure compliance … with security policies and control objectives, identifying gaps and opportunities for improvement within the first line of defence. Record, track, and report on findings from security reviews, audits, and incidents, including the preparation of management information and risk reporting. Develop, update, and deliver information security awareness training to ensure all employees understand their obligations and More ❯

Information Security Analyst Hyrbrid Working Offered **Note Preference will be given to candidates from a financial services/banking environments** Salary: Up to £65,000 Purpose of the Role Supporting the organisation’s Information Security function by helping to develop, operate, and improve its Information Security Management System (ISMS). The role is … responsible for providing advice, assurance, and oversight to reduce risks that could compromise the confidentiality, integrity, and availability of business systems and data. Experience in designing and monitoring security controls is essential, supporting compliance with industry standards and regulation, and ensuring alignment with group-wide information security practices. Key Responsibilities Carry out assurance activities to measure compliance … with security policies and control objectives, identifying gaps and opportunities for improvement within the first line of defence. Record, track, and report on findings from security reviews, audits, and incidents, including the preparation of management information and risk reporting. Develop, update, and deliver information security awareness training to ensure all employees understand their obligations and More ❯

Information Security Analyst Hyrbrid Working Offered **Note Preference will be given to candidates from a financial services/banking environments** Salary: Up to £65,000 Purpose of the Role Supporting the organisation’s Information Security function by helping to develop, operate, and improve its Information Security Management System (ISMS). The role is … responsible for providing advice, assurance, and oversight to reduce risks that could compromise the confidentiality, integrity, and availability of business systems and data. Experience in designing and monitoring security controls is essential, supporting compliance with industry standards and regulation, and ensuring alignment with group-wide information security practices. Key Responsibilities Carry out assurance activities to measure compliance … with security policies and control objectives, identifying gaps and opportunities for improvement within the first line of defence. Record, track, and report on findings from security reviews, audits, and incidents, including the preparation of management information and risk reporting. Develop, update, and deliver information security awareness training to ensure all employees understand their obligations and More ❯

Information Security Analyst | Hybrid | Contract | Northampton My client is looking for an Information Security Analyst/GRC Analyst to be a part of their growing security team. The successful candidate will play a pivotal role in ensuring compliance with data protection regulations, supporting the Information Security Management System ISMS, and … maintaining robust governance, risk, and compliance GRC processes. Key Responsibilities on the Information Security Analyst: Manage and respond to Subject Access Requests SARs in accordance with GDPR timelines and procedures. Oversee Right to Be Forgotten and data deletion requests, ensuring complete and compliant execution. Support the wider GRC and Information Security team in data protection … and risk management activities. Help maintain the Information Security Management System ISMS Provide expert advice on GDPR compliance and data subject rights. Provide expert guidance on data classification, retention, and information governance best practices. Information Security Analyst Experience/Technology: Proven experience in GRC and Information security. Extensive expertise of GDPR, SAR, and More ❯

Information Security Analyst Contract Northampton Hybrid My client is looking for an Information Security Analyst/GRC Analyst to be a part of their growing security team. Policy and process is already in place, so you ll play a key role in managing Subject Access Requests (SARs), Right to Be Forgotten (RTBF … requests, and ensuring the organisation maintains the highest standards of data privacy and governance. Key Responsibilities on the Information Security Analyst: Manage and respond to Subject Access Requests (SARs) in accordance with GDPR timelines and procedures. Oversee Right to Be Forgotten and data deletion requests, ensuring complete and compliant execution. Support the wider GRC and Information Security team in data protection and risk management activities. Help maintain the Information Security Management System (ISMS). Maintain accurate records of all data protection requests and actions taken. Provide expert advice on GDPR compliance and data subject rights. Liaise with internal teams and stakeholders to ensure consistent adherence to data protection principles. Information Security More ❯

Information Security Analyst | Contract | Northampton | Hybrid My client is looking for an Information Security Analyst/GRC Analyst to be a part of their growing security team. Policy and process is already in place, so you’ll play a key role in managing Subject Access Requests (SARs), Right to Be Forgotten (RTBF … requests, and ensuring the organisation maintains the highest standards of data privacy and governance. Key Responsibilities on the Information Security Analyst: Manage and respond to Subject Access Requests (SARs) in accordance with GDPR timelines and procedures. Oversee Right to Be Forgotten and data deletion requests, ensuring complete and compliant execution. Support the wider GRC and Information Security team in data protection and risk management activities. Help maintain the Information Security Management System (ISMS). Maintain accurate records of all data protection requests and actions taken. Provide expert advice on GDPR compliance and data subject rights. Liaise with internal teams and stakeholders to ensure consistent adherence to data protection principles. Information Security More ❯

Job Description What will you be doing? S&W Group is looking for an experienced Information Security Risk Professional with expertise in security compliance and assurance, ISO 27001 implementation, PMO (project management office), risk assessments, supply chain and working on other governance, risk and compliance projects within a team. You’ll be highly motivated, pro-active and … will become a productive member of a busy Information Security team, gaining exposure to a number of areas across the business. As an Information Security Supply Chain Analyst, you’ll verify that third parties meet the minimum-security requirements to protect our organisation from a supply chain related attack or incident. You’ll apply … end to end treatment is applied. You’ll also be part of our PMO and governance and compliance processes and will deliver updates to senior management in meetings and information security forums, whilst ensuring the business remains compliant to regulatory frameworks and good practice standards. This role works within the Information Security Team and collaborates with More ❯

Job Description What will you be doing? S&W Group is looking for an experienced Information Security Risk Professional with expertise in security compliance and assurance, ISO 27001 implementation, PMO (project management office), risk assessments, supply chain and working on other governance, risk and compliance projects within a team. You’ll be highly motivated, pro-active and … will become a productive member of a busy Information Security team, gaining exposure to a number of areas across the business. As an Information Security Supply Chain Analyst, you’ll verify that third parties meet the minimum-security requirements to protect our organisation from a supply chain related attack or incident. You’ll apply … end to end treatment is applied. You’ll also be part of our PMO and governance and compliance processes and will deliver updates to senior management in meetings and information security forums, whilst ensuring the business remains compliant to regulatory frameworks and good practice standards. This role works within the Information Security Team and collaborates with More ❯

Job Description What will you be doing? S&W Group is looking for an experienced Information Security Risk Professional with expertise in security compliance and assurance, ISO 27001 implementation, PMO (project management office), risk assessments, supply chain and working on other governance, risk and compliance projects within a team. You’ll be highly motivated, pro-active and … will become a productive member of a busy Information Security team, gaining exposure to a number of areas across the business. As an Information Security Supply Chain Analyst, you’ll verify that third parties meet the minimum-security requirements to protect our organisation from a supply chain related attack or incident. You’ll apply … end to end treatment is applied. You’ll also be part of our PMO and governance and compliance processes and will deliver updates to senior management in meetings and information security forums, whilst ensuring the business remains compliant to regulatory frameworks and good practice standards. This role works within the Information Security Team and collaborates with More ❯

Job Description What will you be doing? S&W Group is looking for an experienced Information Security Risk Professional with expertise in security compliance and assurance, ISO 27001 implementation, PMO (project management office), risk assessments, supply chain and working on other governance, risk and compliance projects within a team. You’ll be highly motivated, pro-active and … will become a productive member of a busy Information Security team, gaining exposure to a number of areas across the business. As an Information Security Supply Chain Analyst, you’ll verify that third parties meet the minimum-security requirements to protect our organisation from a supply chain related attack or incident. You’ll apply … end to end treatment is applied. You’ll also be part of our PMO and governance and compliance processes and will deliver updates to senior management in meetings and information security forums, whilst ensuring the business remains compliant to regulatory frameworks and good practice standards. This role works within the Information Security Team and collaborates with More ❯

Information Security Analyst Up to £50,000 + benefits Hereford | Hybrid Permanent | Full-time We are looking for an experienced Information Security Analyst to join our client who will play a key role in driving compliance, governance, and continual improvement across key security frameworks including ISO 27001, PCI DSS, and Cyber Essentials Plus. … Key Responsibilities: * Lead on the operation and continual improvement of the Information Security Management System (ISMS) * Coordinate internal and external audit readiness for ISO 27001, PCI DSS, and Cyber Essentials Plus * Draft and update information security policies, procedures, and technical standards * Work with procurement and commercial teams to support supplier assurance and risk assessment * Contribute to … tender responses and bid processes, ensuring security and compliance requirements are met * Promote good security practices and raise awareness across departments * Act as an escalation point and day-to-day contact for other team members * Stay up to date with changes in legislation and standards relating to information and cyber security Key Skills & Experience: Essential: * Background More ❯

IT Security Analyst with experience monitoring and analysing security threats is sought by a high growth scale up based South Birmingham. Working at the forefront of national security innovation this IT Security Analyst will work closely with within the in-house cyber security team to monitor and triage security alerts alongside assist … in vulnerability protection ensuring a high level of cyber protection for this scaling business. This role would suit a IT security Analyst with a couple of years commercial experience who is looking for excellent training, a clear progression pathway and scope to utilise the latest technology to deliver solutions of national significance. This IT Security Analyst … up or SME environment would be advantageous A positive, engaging personality with no ego but the resolve to challenge and question existing process the norm when required This IT Security Analyst based near Birmingham will receive Generous starting salary Flexible working Extensive personal development scheme 25 days holiday 10% private pension scheme Bonus Private healthcare Truly autonomous, collaborative More ❯

Lead Information Security Analyst We’re partnering with a leading digital business that takes cyber risk seriously. Their InfoSec team is award-winning, collaborative, and one of the most gender-diverse in the industry. They’re looking for a Lead Information Security Analyst to strengthen their security governance, risk, and compliance functions — ensuring … customer data and company systems remain secure while leading a small, capable team of analysts. What you’ll be doing: • Leading and supporting all aspects of security governance activities – from policy and exception management to risk and vendor assessments • Managing compliance and audit activities (ISO 27001, NIST, PCI DSS, NYDFS, etc.) and working closely with tech, legal, and audit … teams • Overseeing major projects to ensure security is baked in from inception to implementation • Coaching and developing a team of Information Security Analysts, fostering a proactive and high-performing culture • Acting as a hands-on leader who can balance strategy, delivery, and stakeholder engagement What you’ll bring: • Strong background in GRC (Governance, Risk, and Compliance) within More ❯

Lead Information Security Analyst We’re partnering with a leading digital business that takes cyber risk seriously. Their InfoSec team is award-winning, collaborative, and one of the most gender-diverse in the industry. They’re looking for a Lead Information Security Analyst to strengthen their security governance, risk, and compliance functions — ensuring … customer data and company systems remain secure while leading a small, capable team of analysts. What you’ll be doing: • Leading and supporting all aspects of security governance activities – from policy and exception management to risk and vendor assessments • Managing compliance and audit activities (ISO 27001, NIST, PCI DSS, NYDFS, etc.) and working closely with tech, legal, and audit … teams • Overseeing major projects to ensure security is baked in from inception to implementation • Coaching and developing a team of Information Security Analysts, fostering a proactive and high-performing culture • Acting as a hands-on leader who can balance strategy, delivery, and stakeholder engagement What you’ll bring: • Strong background in GRC (Governance, Risk, and Compliance) within More ❯

Information Security Analyst On site in Eastleigh 2/3-Month Contract Start ASAP Your new company A local government organisation, based across the South UK, are currently looking for an Information Security Analyst to come and support the Cybersecurity Manager for a short period of time, to cover for unforeseen sickness in the … team. The organisation plays a huge part in saving lives, and they truly make a real difference to the local area. Your new role Incident Detection & Response Monitor security alerts from XDR, email, and other systems. Investigate potential security incidents, perform initial triage, and escalate where necessary. Security Monitoring & Reporting Review logs and alerts for unusual activity … or indicators of compromise. Maintain situational awareness of current threats and advise on relevant mitigations. Security Awareness & Culture Monitor and manage the organisation's cybersecurity mailbox, responding to staff queries and phishing reports. Support delivery of awareness campaigns, newsletters, and training initiatives. Software Security Review Review and approve software access requests, ensuring appropriate authorisation and business justification. Third More ❯

Information Security Analyst On site in Eastleigh 2/3-Month Contract Start ASAP Your new company A local government organisation, based across the South UK, are currently looking for an Information Security Analyst to come and support the Cybersecurity Manager for a short period of time, to cover for unforeseen sickness in the … team. The organisation plays a huge part in saving lives, and they truly make a real difference to the local area. Your new role Incident Detection & Response Monitor security alerts from XDR, email, and other systems. Investigate potential security incidents, perform initial triage, and escalate where necessary. Security Monitoring & Reporting Review logs and alerts for unusual activity … or indicators of compromise. Maintain situational awareness of current threats and advise on relevant mitigations. Security Awareness & Culture Monitor and manage the organisation's cybersecurity mailbox, responding to staff queries and phishing reports. Support delivery of awareness campaigns, newsletters, and training initiatives. Software Security Review Review and approve software access requests, ensuring appropriate authorisation and business justification. Third More ❯

Affinity Water has a exciting opportunity available to work in our Cyber Security Team as a Operational Technology Information Security Analyst. The Role: As a Operational Technology Information Security Analyst will be responsible for safeguarding the organisation's Operational Technology (OT) environments from cyber threats. This role involves implementing OT security measures, monitoring … the OT network for threats, leading incident response efforts, validating security controls, and ensuring the resilience of OT systems. What you'll be doing: Implement and manage OT security controls, measures, and technologies to protect critical assets and systems. Conduct risk assessments, vulnerability management, and security testing. Develop and implement incident response plans and ensure compliance with … regulations. Conduct proactive threat hunting and reactive incident response. Provide regular reports on security status, including incidents, vulnerabilities, and overall health of OT systems. Collaborate with cross-functional teams, including network engineers, system administrators, and external cybersecurity teams. What you'll need: At least 3 years of experience in OT security engineering, incident response, or a related field. More ❯

Type: PermanentLocation: Hybrid Overview: We are looking for a detail-oriented and proactive Information Security Compliance Analyst to join our team on a permanent basis. This role is pivotal in supporting the development and continuous improvement of our global information security compliance program.You will be responsible for ensuring that all corporate and subsidiary operations comply … with internal security policies, regulatory requirements, and internationally recognised frameworks such as ISO27001, NIST, SOX, GDPR, CMMC, amongst others. Key Responsibilities: Support the execution and enhancement of the global information security compliance program. Conduct internal audits, third-party risk assessments, and due diligence reviews. Ensure alignment with regulatory and industry standards including ISO27001, NIST, SOX, GDPR, SOC … HIPAA, CCPA, LGPD. Collaborate with cross-functional teams across multiple jurisdictions to drive compliance initiatives. Identify gaps in security controls and recommend corrective actions. Maintain and update security policies, procedures, and documentation. Monitor changes in global regulations and assess their impact on business operations. Minimum of 3 years experience. Skills Required: Proven experience in information security More ❯

Are you passionate about cybersecurity and ready to take ownership of key threat detection platforms? Do you enjoy working across teams to improve security awareness and compliance? Want to make a real impact in a growing organisation? If you’re confident in network defence, incident response, and stakeholder collaboration — this could be your next move. About the Role We … re looking for a proactive and skilled Information Security Analyst to strengthen our cybersecurity posture. You’ll manage key platforms like CyGlass and KnowBe4, coordinate with external partners including Pentest People, and support internal compliance efforts. This is a hands-on role with variety — from incident response and penetration testing coordination to user training and policy development. … Key Responsibilities Security Operations & Monitoring • Manage and monitor the CyGlass network defence platform • Coordinate penetration testing and remediation with Pentest People • Investigate and respond to security alerts and incidents Cybersecurity Awareness & Training • Administer the KnowBe4 training platform • Create campaigns, track engagement, and promote user awareness Compliance & Governance • Support the DPO with GDPR and data protection compliance • Assist in More ❯

Information Security Assurance, Compliance Analyst – Staffordshire We’re looking for an experienced Information Security Compliance & Assurance Analyst to own a brand-new role with real scope to make an impact. Are you ready to take the lead in keeping data secure and driving compliance across a growing organisation? You’ll build frameworks from scratch … the confidence to influence change across teams. This is your chance to shape the role globally, implement meaningful improvements, and leave a lasting mark on a company that values security and compliance. This is an exciting opportunity to work on both audits and the development of innovative programmes within a well-established organisation that offers excellent prospects for career … progression and development. For more information, get in touch. More ❯

The Information Security Analyst will play a critical role in safeguarding the organisation's systems and data, ensuring compliance with security policies and regulations. Based in Hatfield, this role is ideal for individuals passionate about the life science industry and technology. Client Details The hiring company is a medium-sized organisation operating within the life science … and excellence in its field. The company is known for its commitment to leveraging technology to drive forward its mission. Description Implement and maintain ISMS aligning with ISO27001 Ensure security controls are in-place based on ISO27001 and NIST As the regional security representative in the global Security/Technology project Lead/execute phishing campaign Conduct … vulnerability assessments and implement measures to mitigate potential risks. Involve in global security operations process, analysis and escalate security alerts/tickets from global SOC team Maintain and update security policies, standards, and procedures in alignment with industry regulations. Collaborate with cross-functional teams to ensure secure system designs and implementations. Provide training and support to staff More ❯

We are looking for an Information Governance/Security Analyst to support one of our NHS customers in the North West. Key Responsibilities: Essential Functions Establishment - Review Trust-wide populated BCPs to identify systems, suppliers, their function, criticality, and interdependencies. - Formalise the Trust Essential Functions Register, populating the NHSE DSPT Essential Function Template with supporting policies and … the central Data Agreement Register. - Review contracts for: - Cybersecurity clauses - Right to audit - Data protection clauses - Incident breach notification requirements - Details of sub-processors - Review contracts for technical and security risks. - Document supplier certifications and ensure records are in date. More ❯