Social network you want to login/join with:
Information Security Analyst, Stoke-on-Trent
Client: Prism Digital
Location: Stoke-on-Trent, United Kingdom
Job Category: Other
EU work permit required: Yes
Job Views:
4
Posted:
22.08.2025
Expiry Date:
06.10.2025
Job Description:
* Hybrid role based in Coventry with monthly travel to London
* Support for security certifications and career development opportunities
Join a high-stakes security program as a hands-on GRC Analyst supporting a global financial institution’s banking expansion. Your role will involve scaling a modern InfoSec environment, balancing regulatory, ethical, and operational requirements.
You will focus on third-party security assessments, metrics reporting, and supporting frameworks such as ISO27001 and SOC2. You will collaborate with risk, technology, and compliance stakeholders, operating efficiently with visibility and trust from leadership.
Requirements include:
* Over 3 years of experience in an InfoSec or IT security role within a regulated or financial environment
* Security certifications such as SSCP, Security+, or equivalent
* Strong foundation in GRC, familiar with risk frameworks and standards like ISO, SOC2, NIST
* Proficiency with security tools and metrics-driven reporting
* Effective communication skills to translate technical concepts and engage stakeholders
* Ethical mindset with sound judgment on escalation and ownership
Responsibilities:
* Support ISO27001 & SOC2 governance, including ISMS management, remediation, and risk reviews
* Conduct third-party risk assessments and security reviews of suppliers
* Drive security awareness initiatives, including phishing simulations and content management
* Manage BAU InfoSec operations: ticket handling, KPI reporting, risk dashboards, vulnerability monitoring
* Operate and report using security platforms like Protecht, Panorays, Rapid7, and Armis
* Contribute to banking enablement and market launches with InfoSec input
Tools and technologies:
* Panorays – Third-party risk management
* Rapid7, Armis – Vulnerability and asset visibility
* Proofpoint – Phishing simulations and awareness content
* Microsoft Purview – Data governance and policy enforcement
* Azure (beneficial) – Cloud IAM, logging, and security monitoring
Why choose this role?
* Impactful GRC projects linked to market expansion
* Strong internal security culture supported by collaborative leadership
* Opportunities to develop across awareness, compliance, and operational areas
#J-18808-Ljbffr