Social network you want to login/join with:
Information Security Analyst, Bolton, Greater Manchester
Client: Prism Digital
Location: Bolton, Greater Manchester, United Kingdom
Job Category: Other
EU work permit required: Yes
Job Views: 4
Posted: 22.08.2025
Expiry Date: 06.10.2025
Job Description:
* Hybrid role based in Coventry with monthly travel to London
* Support for security certifications and career development opportunities
Join a high-stakes security program as a hands-on GRC Analyst supporting a global financial institution’s banking expansion. You will help scale a modern InfoSec environment, balancing regulatory compliance, ethical standards, and business-as-usual resilience.
Your responsibilities include third-party security assessments, metrics reporting, and supporting certification frameworks such as ISO27001 and SOC2. You will collaborate closely with risk, technology, and compliance stakeholders, operating efficiently with transparency and trust from leadership.
Qualifications:
* Over 3 years of experience in an InfoSec or IT security role within a regulated or financial organization
* Security certifications such as SSCP, Security+, or equivalent
* Strong foundation in GRC: ability to interpret risk frameworks and speak the language of ISO, SOC2, NIST, etc.
* Experience with security tools and metrics-driven reporting
* Excellent communication skills to translate technical details into actionable insights and engage stakeholders effectively
* Ethical mindset: knowing when to escalate, challenge, and take ownership of areas
Key Responsibilities:
* Support ISO27001 & SOC2 governance, including ISMS management, remediation, and risk reviews
* Conduct third-party security assessments aligned with regulatory requirements
* Drive security awareness initiatives, including phishing simulations and content management via Proofpoint
* Manage BAU InfoSec operations: ticket triage, KPI reporting, risk dashboards, vulnerability, and patch monitoring
* Operate and report using compliance platforms like Protecht, Panorays, Rapid7, and Armis
* Provide InfoSec input for new market launches in banking
* Utilize tools such as Panorays for third-party risk management, Rapid7 and Armis for vulnerability management, Proofpoint for phishing awareness, Microsoft Purview for data governance, and Azure for cloud security (beneficial)
Why this role?
* Engage in high-impact GRC projects related to market expansion
* Be part of a strong internal security culture supported by collaborative leadership
* Opportunities to develop across awareness, compliance, and operational domains
#J-18808-Ljbffr