Social network you want to login/join with:
Information Security Analyst, Cheltenham
Client: Prism Digital
Location: Cheltenham, UK
Job Category: Other
EU work permit required: Yes
Job Views: 4
Posted: 22.08.2025
Expiry Date: 06.10.2025
Job Description:
* Hybrid role based in Coventry with monthly travel to London
* Support for security certifications & career development opportunities
Assist in shaping a high-stakes security program as a hands-on GRC Analyst supporting a global financial institution's banking expansion. Focus on scaling a modern InfoSec environment, balancing regulatory requirements, ethical standards, and business resilience.
Responsibilities include third-party security assessments, metrics reporting, and supporting certification frameworks such as ISO27001 and SOC2. Collaborate closely with risk, technology, and compliance teams, maintaining visibility and trust at all levels.
Qualifications:
* Over 3 years of experience in an InfoSec or IT security role within a regulated or financial environment
* Security certifications like SSCP, Security+, or equivalent
* Strong understanding of GRC frameworks and standards such as ISO, SOC2, NIST
* Experience with security tools and metrics reporting
* Excellent communication skills for stakeholder engagement
* Ethical mindset with the ability to escalate and challenge appropriately
Key Responsibilities:
* Support ISO27001 & SOC2 governance, including ISMS management and risk reviews
* Conduct third-party risk assessments and supplier security reviews
* Drive security awareness training, including phishing simulations
* Manage BAU InfoSec operations: ticket triage, KPI reporting, vulnerability monitoring
* Operate and report using security platforms like Protecht, Panorays, Rapid7, and Armis
* Contribute to key InfoSec inputs for new market launches
Tools & Technologies:
* Panorays – Third-party risk management
* Rapid7, Armis – Vulnerability & asset visibility
* Proofpoint – Phishing simulations and awareness content
* Microsoft Purview – Data governance
* Azure (beneficial) – Cloud IAM and security monitoring
Why choose this role?
* High-impact projects related to new market expansion
* Supportive security culture with engaged leadership
* Opportunities to develop across awareness, compliance, and operational areas
#J-18808-Ljbffr