Social network you want to login/join with:
Information Security Analyst, Preston, Lancashire
Client: Prism Digital
Location: Preston, Lancashire, United Kingdom
Job Category: Other
-
EU work permit required:
Yes
Job Views: 4
Posted: 22.08.2025
Expiry Date: 06.10.2025
Job Description:
* Hybrid role based in Coventry with monthly travel to London
* Support for security certifications & career development opportunities
Join us as a hands-on GRC Analyst supporting a global financial institution's banking expansion. Play a key role in scaling a modern InfoSec environment, balancing regulatory requirements, ethical standards, and operational resilience.
Your focus will include third-party security assessments, metrics reporting, and supporting certification frameworks such as ISO27001 and SOC2. Collaborate closely with risk, technology, and compliance teams, operating efficiently with transparency and trust from leadership.
Qualifications:
* Over 3 years of experience in an InfoSec or IT security role within a regulated or financial environment
* Security certifications like SSCP, Security+, or equivalent
* Strong foundation in GRC, familiar with risk frameworks and standards like ISO, SOC2, NIST
* Proficient with security tools and metrics-driven reporting
* Excellent communicator able to translate technical language to stakeholders
* Ethical mindset with sound judgment on escalation and ownership
Responsibilities:
* Support ISO27001 & SOC2 governance, including ISMS management, remediation, and risk reviews
* Conduct third-party security assessments aligned with regulatory frameworks
* Drive security awareness initiatives, including phishing simulations and internal content management
* Manage BAU InfoSec operations: ticket triage, KPI reporting, risk dashboards, vulnerability monitoring
* Utilize and report through platforms like Protecht, Panorays, Rapid7, and Armis
* Contribute to banking enablement and major market launches
Tools & Technologies:
* Panorays – Third-party risk management
* Rapid7, Armis – Vulnerability & asset visibility
* Proofpoint – Phishing simulations and awareness content
* Microsoft Purview – Data governance
* Azure (beneficial) – Cloud IAM, logging, security monitoring
Why choose this role?
* Engage in high-impact GRC projects linked to new market expansion
* Be part of a strong internal security culture with collaborative leadership
* Opportunities to develop across awareness, compliance, and operational areas
#J-18808-Ljbffr