Guildford, Surrey, England, United Kingdom Hybrid / WFH Options
Sanderson
Role: Information SecurityAnalyst Location: Guildford (Hybrid options available) Salary: Circa £45,000 (plus comprehensive benefits package) Start date: ASAP My client, a leading financial services organisation, is looking for an Information SecurityAnalyst to join their team. This is an excellent opportunity to play a key role in advancing the company's security posture … by delivering Governance, Risk, and Compliance (GRC) initiatives and embedding the NIST Cyber Security Framework (CSF) across the business. Key skills/responsibilities: Deliver day-to-day GRC activities, including designing and implementing security controls and managing information security risks Interpret and apply requirements from the Group Information Security Framework Conduct gap assessments, identify risks, and … support maturity uplift across security functions Develop and maintain an information security controls catalogue, policies, and procedures aligned with NIST CSF Collaborate with business units to integrate security measures into operations Support compliance activities for frameworks such as Cyber Essentials, PCI DSS, and the Group Information Security Framework Facilitate reviews and updates to ensure controls remain More ❯
Data Analyst (Security & SaaS Posture Management) Day Rate: £450 Inside IR35 Duration: 6 months Location: Guildford (Twice a week on site) We are seeking a Data Analyst with hands-on experience supporting security-focused projects and working directly with SaaS Security Posture Management (SSPM) tools. This role will combine data analysis, security insight, and … cloud knowledge to drive improvements in SaaS resilience and risk management. Key Responsibilities Analyse and interpret security-related datasets from SaaS, cloud, and internal systems. Build and maintain administrative controls to strengthen SaaS security posture. Work with SSPM tools to monitor coverage, effectiveness, and compliance of SaaS environments. Partner with security and assurance teams to track Key … KRIs) and Key Control Indicators (KCIs). Create and maintain dashboards and reports (Power BI, Excel) to visualise SaaS posture and control performance. Requirements Proven experience as a Data Analyst on security or risk projects. Hands-on exposure to SaaS Security Posture Management (SSPM). Strong data analysis skills - able to query, map, and interpret complex datasets. More ❯
Surrey, England, United Kingdom Hybrid / WFH Options
Sanderson
Information Security Senior Analyst Location: Surrey (Hybrid) Our client, a large corporate organisation based in Surrey, is seeking an Information Security Senior Analyst with experience of Risk & Controls to join their team. The successful candidate will have proven experience in risk management, controls, and governance frameworks, who can lead initiatives, mentor others, and collaborate effectively across … business units. You should be both strategic and hands-on, with a passion for proactive security and continuous improvement. Responsibilities: Lead the InfoSec risk register - Identify, assess, and mitigate information security risks. Own control frameworks - Maintain and improve controls to ensure alignment with standards like NIST CSF and COBIT. Drive assurance - Monitor the effectiveness of security controls … including outcomes of penetration testing and red team exercises. Collaborate with business units - Act as a security advocate and guide cross-functional teams in secure practices. Lead technical initiatives - Provide hands-on leadership and mentor more junior team members. Conduct threat and vulnerability assessments - Take a proactive role in identifying potential security threats. Skills and experience required: Strong More ❯
