1 to 25 of 35 Permanent Information Security Analyst Jobs

Information Security Assurance Analyst Overview: Our client is looking for an Information Security Assurance Analyst Operations. The aim of this role is the effective operation, reporting and evidencing of their technology and information security control environment and the overall Information Security Management System (ISMS). Based in Reigate/hybrid … Maintaining and improving our ISMS – Updating ISMS policies, procedures, standards, and guidance – Coordinate and provide necessary support in planning and completing internal ISMS reviews. Supplier onboarding and annual supplier security assessments – Maintaining and developing our security awareness and education programmes – Analysis of information security alerts and incidents – Report on incidents, risks, threats and vulnerabilities – Scheduling internal … and external penetration and vulnerability tests and managing remediation planning Assist in evaluation of cyber security tools Manage online ISMS system. Assist the ISM to deliver Information Security projects Participate in technology and information security related audits, providing support regarding the collation and supply of evidence to requests. Ensuring information security controls are More ❯

As a Journeyman Information Security Analyst at Cherokee Nation Systems Solutions (CNSS) in Washington, DC, you will play a pivotal role in ensuring the security and functionality of system platforms. You will collaborate with upper management to determine acceptable levels of risk for enterprise computing platforms. Compensation & Benefits: Estimated Starting Salary Range for Information Security Analyst: $95,000 to $105,000 Pay commensurate with experience. Full time benefits include Medical, Dental, Vision, 401K, and other possible benefits as provided. Benefits are subject to change with or without notice. Information Security Analyst Responsibilities Include: Provide Information Technology General Controls (ITGC) testing to develop and execute software test plans to identify … but not limited to critical IT controls (CIC), Financial and related financial system ATOs, Accounting Treatment Manual Assessment and Testing (ATM), etc. Collaborate with cross-functional teams to integrate security requirements into system planning, fieldwork, and reporting. Work general supervision, relying on experience and judgment to plan and accomplish goals, while demonstrating a wide degree of creativity and latitude More ❯

DSA is hiring an Intermediate Information Security Analyst. This is a full-time position supporting a customer in the DC Metro area with a HYBRID Schedule. This position supports the Environmental Protection Agency (EPA). DSA is the Prime and has been working with this customer on this contract for more than 13 years. It is a dynamic … each week is required. Core work hours dedicated to DSA and our direct customer are 8 am est to 5 pm est. The Environmental Protection Agency (EPA) Office of Information Security and Privacy (OISP) is responsible for developing and maintaining agency wide information security and privacy programs; developing and maintaining information security and privacy … policies, procedures, and control techniques; training personnel with significant information security responsibilities and assisting senior agency officials with information security and privacy responsibilities. The Intermediate Information Security Analyst will be an integral part of a team responsible for supporting the development and maturation of an Agency-wide information security (InfoSec) program More ❯

DSA is hiring a Senior Information Security Analyst. This is a full-time position supporting a customer in the DC Metro area with a HYBRID Schedule. This position supports the Environmental Protection Agency (EPA). DSA is the Prime and has been working with this customer on this contract for more than 13 years. It is a dynamic … each week is required. Core work hours dedicated to DSA and our direct customers are 8 am est to 5 pm est. The Environmental Protection Agency (EPA) Office of Information Security and Privacy (OISP) is responsible for developing and maintaining agency-wide information security and privacy programs; developing and maintaining information security and privacy … policies, procedures, and control techniques; training personnel with significant information security responsibilities and assisting senior agency officials with information security and privacy responsibilities. The Senior Information Security Analyst will be an integral part of a team responsible for supporting the development and maturation of an Agency-wide information security (InfoSec) program More ❯

We're now recruiting a senior cyber security analyst support the Security Operations Manager in responding, managing and reporting the Information Security Risks faced by Technology Services (TS) in delivering AJ Bells systems and services.Key to this is maintaining the confidentiality, integrity and availability of the data that resides upon those systems. This role will … be key to understanding the threats targeting AJ Bell and ensuring our defences provide and effective response. Key responsibilities: Reviewing and assessing Security Operations Centre alerts to ensure an appropriate response taken. Overseeing vulnerability scanning to confirm the effectiveness of patching Monitoring systems for compliance with policy and supporting remediation where required. Track and manage penetration testing programs. Investigate … and respond to security breaches and incidents. Supporting the administration of email and web gateways Develop our threat intelligence and provide monitoring of external information sources to make recommendations on latest security threats and vulnerabilities that affect our technical estate Collaborate with IT and other departments to ensure security best practices are followed. Stay up-to More ❯

As Hargreaves Lansdown (HL) continues it digital journey, we are enhancing our Cloud Assurance capabilities, within our Information Security Team. We are seeking a highly skilled Senior Security Analyst with a proven track record in delivering and maintaining Cloud assurance, preferably within a financially regulated enterprise environment or similar. The Senior Security Analyst is … a specialist lead SME role with the primary focus on AWS Cloud Security Assurance, as well as Governance, Risk and supporting Compliance. You will be supporting the Information Security function to ensure HL remains effective in protecting critical information assets within risk appetite. You will be working with a highly skilled and committed Security, Digital … IT and Cloud teams. You will play a significant role in our Cloud journey, working with our AWS and Azure Cloud platforms and security toolsets. We offer a commitment to your career development through training, mentoring and internal opportunities. What you'll be doing You will be the SME and lead for the technical aspects of Cloud security More ❯

Information Security Analyst Up to £50,000 + benefits Hereford | Hybrid Permanent | Full-time We are looking for an experienced Information Security Analyst to join our client who will play a key role in driving compliance, governance, and continual improvement across key security frameworks including ISO 27001, PCI DSS, and Cyber Essentials Plus. … Key Responsibilities: * Lead on the operation and continual improvement of the Information Security Management System (ISMS) * Coordinate internal and external audit readiness for ISO 27001, PCI DSS, and Cyber Essentials Plus * Draft and update information security policies, procedures, and technical standards * Work with procurement and commercial teams to support supplier assurance and risk assessment * Contribute to … tender responses and bid processes, ensuring security and compliance requirements are met * Promote good security practices and raise awareness across departments * Act as an escalation point and day-to-day contact for other team members * Stay up to date with changes in legislation and standards relating to information and cyber security Key Skills & Experience: Essential: * Background More ❯

Information Security Analyst | Security+, Microsoft Purview, Defender | Global Trading Platform £60–70k base + 10% bonus Hybrid in Coventry with monthly travel to London Security certification support & career development built-in Join a growing InfoSec team at the heart of a global financial institution’s expansion. As an Analyst, you’ll work hands-on with … data governance, security tooling, and access management — helping to shape how a modern SME approaches cybersecurity. You’ll bring technical curiosity, the ability to interrogate data, and the confidence to advise IT teams on the practical steps that keep the business secure. What you’ll bring: 3+ years’ experience in an InfoSec, IT security, or analyst role … Security certifications: Security+ and ideally Microsoft security certifications (e.g. SC-200/SC-400) Experience with security tools (Microsoft Defender, web proxy, email security, CrowdStrike or equivalents) Knowledge of single sign-on and zero trust networks (beyond just segregation) Exposure to data management/governance tools (e.g. Microsoft Purview, or similar) Strong communicator: able to translate More ❯

Information Security Analyst | Security+, Microsoft Purview, Defender | Global Trading Platform £60–70k base + 10% bonus Hybrid in Coventry with monthly travel to London Security certification support & career development built-in Join a growing InfoSec team at the heart of a global financial institution’s expansion. As an Analyst, you’ll work hands-on with … data governance, security tooling, and access management — helping to shape how a modern SME approaches cybersecurity. You’ll bring technical curiosity, the ability to interrogate data, and the confidence to advise IT teams on the practical steps that keep the business secure. What you’ll bring: 3+ years’ experience in an InfoSec, IT security, or analyst role … Security certifications: Security+ and ideally Microsoft security certifications (e.g. SC-200/SC-400) Experience with security tools (Microsoft Defender, web proxy, email security, CrowdStrike or equivalents) Knowledge of single sign-on and zero trust networks (beyond just segregation) Exposure to data management/governance tools (e.g. Microsoft Purview, or similar) Strong communicator: able to translate More ❯

Information Security Analyst | Security+, Microsoft Purview, Defender | Global Trading Platform £60–70k base + 10% bonus Hybrid in Coventry with monthly travel to London Security certification support & career development built-in Join a growing InfoSec team at the heart of a global financial institution’s expansion. As an Analyst, you’ll work hands-on with … data governance, security tooling, and access management — helping to shape how a modern SME approaches cybersecurity. You’ll bring technical curiosity, the ability to interrogate data, and the confidence to advise IT teams on the practical steps that keep the business secure. What you’ll bring: 3+ years’ experience in an InfoSec, IT security, or analyst role … Security certifications: Security+ and ideally Microsoft security certifications (e.g. SC-200/SC-400) Experience with security tools (Microsoft Defender, web proxy, email security, CrowdStrike or equivalents) Knowledge of single sign-on and zero trust networks (beyond just segregation) Exposure to data management/governance tools (e.g. Microsoft Purview, or similar) Strong communicator: able to translate More ❯

Information Security Analyst (GRC) Attractive salary & package. Hertfordshire - with flexibility to work from home. A global client of ours are looking to hire an Information Security Analyst. T his company offer the chance for you to work in a very attractive industry, with a great benefit package also. This Information Security Analyst (GRC) role would suit someone with experience with information security risk assessments, reporting risks and who holds the ISO 27001 lead implementer/auditor certification. Any other certifications that you hold will be beneficial. Experience dealing with non-UK entities & stakeholder management experience will also be very attractive. In this role you will be performing regular checks … and audits of the Security environment. If you would like to know more, please do get in touch. *Unfortunately, this company is unable to provide sponsorship More ❯

Information Security Analyst – Leading UK Construction Company A leading UK construction and development firm is looking for a proactive Information Security Analyst to join their IT Infrastructure team. This is a key role focused on strengthening cybersecurity, managing key security platforms, and supporting compliance initiatives. Key responsibilities: Monitor and manage network defence and … vulnerability testing tools. Administer the cybersecurity awareness training platform and drive engagement. Support data protection and compliance activities. Conduct infrastructure security reviews and risk assessments. Collaborate with internal teams and external partners to enhance security posture. Ideal experience: Background in information security or infrastructure engineering. Strong understanding of network security, threat detection, and incident response. … Familiarity with vulnerability testing and security awareness tools. Knowledge of GDPR and ISO27001 frameworks. Relevant certifications (CISSP, CISM, or CompTIA Security+) beneficial. Location: Northampton – full-time, office-based? Type: PermanentIf you’re passionate about cybersecurity and want to make an impact within a forward-thinking construction environment, get in touch to find out more. More ❯

Position: Information Security Analyst A cleared defense program is seeking an Information Security Analyst with 3+ years of hands-on experience in DevSecOps automation and CI/CD environments. This role supports Department of Defense initiatives located at Naval Base Point Mugu near Camarillo, CA. The position offers long-term stability, career growth opportunities … a strong benefits package. Compensation: Typical salary range: $120,000 - $155,000 annually. Final offer will be based on skills, relevant background, location, and contract-specific factors. Key Responsibilities Information Security & Assurance Develop, implement, and maintain security measures to protect networks and sensitive data Identify and assess system vulnerabilities; recommend and apply mitigation strategies Ensure security controls protect critical files and infrastructure Collaborate with ISSO and Cybersecurity Lead on incident response for security breaches and malware Monitor and upgrade security protocols to meet evolving threats DevSecOps Integration Embed security practices into CI/CD pipelines to reduce software vulnerabilities Partner with developers and operations teams to enforce secure coding and delivery standards More ❯

Group plays a pivotal role in managing and optimising the organisations critical enterprise technical services that underpin and enable UKRI's business capabilities. Within the group a team of Information Security Professionals support the delivery of modern, secure, resilient and scalable services across a larger federated team of Digital, Data and Technology professionals to deliver impact across the … organisation and the wider UK research and innovation system. Join us for this rare opportunity to apply your expertise in information security in a dynamic, fast-paced security operational and strategic role in an organisation at the heart of research and innovation in the UK. Working as part of a team of technical specialists, your broad remit … is to ensure the security and integrity of the organisation's IT infrastructure. You will work closely with development, operations, architecture and security teams to implement and maintain secure systems and protocols, monitor for security threats, respond to incidents, and continuously improve the security posture. Security: As a minimum, due to the nature of this More ❯

CIO Group plays a pivotal role in managing and optimising the organisations critical enterprise technical services that underpin and enable UKRIs business capabilities. Within the group a team of Information Security Professionals support the delivery of modern, secure, resilient and scalable services across a larger federated team of Digital, Data and Technology professionals to deliver impact across the … organisation and the wider UK research and innovation system. Join us for this rare opportunity to apply your expertise in information security in a dynamic, fast-paced security operational and strategic role in an organisation at the heart of research and innovation in the UK. Working as part of a team of technical specialists, your broad remit … is to ensure the security and integrity of the organisation's IT infrastructure. You will work closely with development, operations, architecture and security teams to implement and maintain secure systems and protocols, monitor for security threats, respond to incidents, and continuously improve the security posture. Security: As a minimum, due to the nature of this More ❯

Job Number 707110BR Description:The Security Information Systems Analyst Staff performs a variety of activities in information systems design, development, and analysis encompassing one or more of the following areas of technical expertise: programming, computer application analysis, software development, systems integration, and related disciplines. We will be having a virtual hiring event on November 5th and … programs and the work schedule may change depending on program needs. We are hiring levels 2-5. If you are interested in joining LM and working as a Security Information Systems Analyst, please apply to this requisition. We will screen those that look like a strong possibility of fit. Once screened, we will select the top … and customers on site for access control and visitor management. Performs in individual and team roles supporting all internal or government audits of access control, visitor certification and contract security operations. - Maintains all associated documentation in compliance with established protocols. - Provides oversight on contract security operations and coordinates with the security team and leadership to enforce contractual More ❯

provides hands-on experienced services to civilian and DoD programs worldwide. Delivering highly skilled, cleared personnel who provide services on five continents for a portfolio of customers. Summary: The Information Security Analyst will support the protection of our organization's information systems and data. This role is responsible for monitoring security systems, identifying vulnerabilities, responding … to incidents, and ensuring compliance with security policies and standards. The ideal candidate will have a strong technical foundation in cybersecurity and a passion for safeguarding digital assets. Responsibilities Essential Job Functions: Under general direction, supports all activities relating to RMF control remediation and artifact gathering for specified systems. Works with an engineering team to ensure that information security is reflected properly in deployed systems (to include handling Technical Order and Time Compliant Technical Order). Develop information systems assurance programs to include vulnerability and threat management, and control guidelines. Advises other sections regarding internal controls and security procedures. Prepares activity and progress reports relating to the information systems audit function. Access to More ❯

hands-on experienced services to civilian and DoD programs worldwide. Delivering highly skilled, cleared personnel who provide services on five continents for a portfolio of customers. Summary: The Senior Information Security Analyst is responsible for identifying and mitigating security risks, monitoring systems for vulnerabilities, and ensuring compliance with industry standards and regulatory requirements. The ideal candidate … will have a strong technical background, excellent analytical skills, and the ability to work collaboratively across departments to strengthen the organization's security posture. Responsibilities Essential Job Functions: Responsible for all activities relating to RMF control remediation and artifact gathering for specified systems. Works with an engineering team to ensure that information security is reflected properly in … deployed systems (to include handling Technical Order and Time Compliant Technical Order). Develop information systems assurance programs to include vulnerability and threat management, and control guidelines. Advises other sections regarding internal controls and security procedures. Prepares activity and progress reports relating to the information systems audit function. Access to eMASS (system used to log RMF activities More ❯

Job ID: 707110BR Date posted: Oct. 02, 2025 Description: The Security Information Systems Analyst Staff performs a variety of activities in information systems design, development, and analysis encompassing one or more of the following areas of technical expertise: programming, computer application analysis, software development, systems integration, and related disciplines. We will be having a virtual hiring … programs and the work schedule may change depending on program needs. We are hiring levels 2-5. If you are interested in joining LM and working as a Security Information Systems Analyst, please apply to this requisition. We will screen those that look like a strong possibility of fit. Once screened, we will select the top … and customers on site for access control and visitor management. Performs in individual and team roles supporting all internal or government audits of access control, visitor certification and contract security operations. - Maintains all associated documentation in compliance with established protocols. - Provides oversight on contract security operations and coordinates with the security team and leadership to enforce contractual More ❯

Are you an Information Security expert looking to work for one of the UK's largest charities? British Heart Foundation (BHF) is undergoing a digital transformation and we are seeking a skilled and motivated Information Security GRC Analyst to support us in this development and play a crucial in ensuring our organisation meets regulatory and … GRC principles are comprehensively understood, applied, reviewed, and documented in a reportable manner. You'll establish effective working relationships within the BHF to ensure a cohesive approach to implementing information security across all parts of the organisation. Working arrangements This is a blended role, where your work will be dual located between your home and our London office. … unlock your best work for our cause. About you With strong knowledge of various regulatory frameworks and industry standards you'll also have familiarity with Azure governance and cloud security best practices you'll have previous experience working in a GRC Analyst, risk management, or information security role, alongside this you'll have experience developing ISMS More ❯

Type: PermanentLocation: Hybrid Overview:We are looking for a detail-oriented and proactive Information Security Compliance Analyst to join our team on a permanent basis. This role is pivotal in supporting the development and continuous improvement of our global information security compliance program.You will be responsible for ensuring that all corporate and subsidiary operations comply … with internal security policies, regulatory requirements, and internationally recognised frameworks such as ISO27001, NIST, SOX, GDPR, CMMC, amongst others.Key Responsibilities: Support the execution and enhancement of the global information security compliance program. Conduct internal audits, third-party risk assessments, and due diligence reviews. Ensure alignment with regulatory and industry standards including ISO27001, NIST, SOX, GDPR, SOC … HIPAA, CCPA, LGPD. Collaborate with cross-functional teams across multiple jurisdictions to drive compliance initiatives. Identify gaps in security controls and recommend corrective actions. Maintain and update security policies, procedures, and documentation. Monitor changes in global regulations and assess their impact on business operations. Minimum of 3 years experience.Skills Required: Proven experience in information security compliance More ❯

Description Serve as an on-site Intermediate Information Security Analyst for the Missile Defense Agency. Responsible for orchestrating day to day client delivery for the Information Safeguards Division. Provide client interface and report to clients and senior contractor team leadership. Must be capable to work in a team environment. The Applicant will: Assist with orchestrating protective … measures to safeguard MDS information from loss, compromise, or unauthorized disclosure. The contractor shall support implementation of the MDA Information Security (INFOSEC) Program IAW DoD, MDA, and other non-DoD requirements. The contractor shall engage in activities such as performing analysis, developing plans, attending meetings, preparing reports, conducting surveys, maintaining and updating databases, and conducting training. Assist … the MDS programs and Agency personnel with developing and/or updating and implementing Security Classification Guides (SCGs). Review and analyze existing and/or new guides to identify 1) template and format issues, 2) inconsistencies in the horizontal protection of information, and 3) recommendations in changes to specific topic and other language and classification levels. Support More ❯

Games Workshop has an exciting new opportunity for an Information Security Analyst focusing on Governance, Risk and Compliance to work in our high performing IT team. We are looking for someone enthusiastic about delivering an efficient and effective IT Solution, using their skills day in and day out to make Games Workshop even better Working collaboratively with … the Head of Information Security, you will conduct comprehensive risk assessments with strict adherence to regulations through policy enforcement, training, audit activity and closely monitoring regulations and operational processes. Your highly collaborative and positive approach will allow you to build a network of relationships across our Legal and Data Protection teams to promote a culture of compliance, accountability … evaluate risks to develop recommendations and drive improvements independently and understand ISO 27001:2022, NIST CSF2.0 or similar governance frameworks. If you are an individual with an understanding of information security and risk management principles and keen to champion a culture of embedding security principles across Games Workshop, apply today for more information. Working at Games Workshop More ❯

Senior Information Security Analyst Redstone Arsenal/Huntsville, AL IPTA's Technology Solutions Team is passionate about providing our customers with technical solutions that satisfy their business needs. Through collaborative interactions with customers, team members, subject matter experts (SMEs), technical leaders, and partners we design practical solutions that solve real problems for major government and business organizations. … are looking for: Smart people with a passion for technology Ability to solve challenging business problems Self-directed professionals Hunger to continually learn and grow IPT is seeking talented Information Security Analysts to support our work at the Army Combat Capabilities Development Command (DEVCOM) Army Aviation and Missile Center (AvMC), Redstone Arsenal, AL. Cybersecurity expertise is required to … the supporting technical role and actions necessary to support and participate in the Cybersecurity authorization of networks and systems. Collect, develop, document, and enforce cybersecurity controls, policies, procedures, and Security Technical Implementation Guides (STIGs) settings IAW the new systems architectural requirements. Provide one on one support to customer base and answer technical cyber questions. Guide new customers through the More ❯

Are you passionate about cybersecurity and ready to take ownership of key threat detection platforms? Do you enjoy working across teams to improve security awareness and compliance? Want to make a real impact in a growing organisation? If you’re confident in network defence, incident response, and stakeholder collaboration — this could be your next move. About the Role We … re looking for a proactive and skilled Information Security Analyst to strengthen our cybersecurity posture. You’ll manage key platforms like CyGlass and KnowBe4, coordinate with external partners including Pentest People, and support internal compliance efforts. This is a hands-on role with variety — from incident response and penetration testing coordination to user training and policy development. … Key Responsibilities Security Operations & Monitoring • Manage and monitor the CyGlass network defence platform • Coordinate penetration testing and remediation with Pentest People • Investigate and respond to security alerts and incidents Cybersecurity Awareness & Training • Administer the KnowBe4 training platform • Create campaigns, track engagement, and promote user awareness Compliance & Governance • Support the DPO with GDPR and data protection compliance • Assist in More ❯