Information Security Analyst

Role Overview Our client is seeking an experienced, hands on Senior Information Security Analyst to support both their technical security work and governance, risk and compliance (GRC). You will assess risks, review supplier and project security, respond to security questionnaires and tenders, support incident investigations, and help maintain compliance with Cyber Essentials Plus, ISO 27001, DSPT and GDPR.Responsibilities

• Conduct risk assessments for systems, projects and third parties; document findings and remediation.
• Review and respond to supplier/security questionnaires and tender submissions.
• Support vulnerability and patch management; interpret scans and prioritise fixes.
• Advise IT teams on alerts, incidents and security configuration (M365/Azure/Defender/DLP/Conditional Access).
• Maintain risk register and track remediation actions from audits or incidents.
• Support compliance activities (ISO 27001, Cyber Essentials Plus, DSPT) and contribute to policy updates.
• Provide clear security advice to projects and senior stakeholders.

What you'll need to succeed

• Proven experience in information security, with a blend of technical and GRC responsibilities.
• Strong understanding of cloud and network security, ideally within Microsoft ecosystems (e.g., Azure, M365, Defender suite, DLP, Conditional Access).
• Skilled in evaluating supplier security through questionnaires, procurement documents, and assurance reviews.
• Knowledgeable in risk management practices and frameworks such as ISO 27005 and NIST RMF.
• Familiar with key compliance standards including ISO 27001, Cyber Essentials Plus, DSPT, and GDPR.
• Capable of interpreting vulnerability assessments and advising on appropriate remediation strategies.
• Excellent communication skills, both written and verbal, with the ability to engage effectively with stakeholders.

What you'll get in return

• An initial 3 month contract
• £36 per hour inside IR35 (via Umbrella)
• Ability to work remotely

What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now.If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion about your career.

Hays EA is a trading division of Hays Specialist Recruitment Limited and acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at hays.co.uk