Information Technology Security Analyst

This role requires 4 days per week in the office (Marylebone, London W1) and 1 day from home.

The Information Security Analyst is responsible for embedding pragmatic security assurance into vendor selection, SaaS adoption, and project delivery, ensuring that security risks are identified early, articulated clearly, and actively progressed.

The role operates at the intersection of governance, technical delivery, and operational follow‐through. It provides hands‐on assurance for vendor and SaaS security (including investor‐driven requirements), supports secure delivery of projects, and ensures security commitments translate into real control implementation.

This role is not a policy‐only or compliance‐led position. It is designed for someone who is technically credible, comfortable working with delivery teams, and able to use governance artefacts to support informed decisions.

. Key Relationships

• Head of Information Security – prioritisation, escalation, risk decisions, governance alignment
• Engineering / Delivery Teams – early engagement on project designs and security requirements
• IT Operations & Helpdesk – follow‐through on remediation and control implementation
• Procurement / Business Owners – vendor assurance outcomes and risk decisions
• Third‐party suppliers and SaaS vendors – security due diligence and evidence validation