Job Overview
Information Security Analyst – 4 days in the office and 1 day working remotely.
In this hands‑on, delivery‑focused role you will embed pragmatic security assurance into vendor selection, SaaS adoption and project delivery. You will identify security risks early, articulate them clearly and drive them to implementation.
What You'll Be Doing
* Vendor & SaaS Security Assurance: Lead assessments of new and existing vendors and SaaS platforms, reviewing identity and access controls, data protection, hosting environments, vulnerability management and incident response. Translate findings into risk statements, mitigations and acceptance options with evidence for investor, audit and assurance reviews.
* Secure Project Delivery: Engage early in projects and technical change to shape security before designs are finalised. Review architectures and delivery approaches, challenge credential handling, access lifecycle, key rotation and logging expectations. Work pragmatically with delivery teams, including those using Azure DevOps, integrating security into plans.
* Operational Risk Follow‑Through: Ensure identified risks are tracked and remediated, follow up on overdue items and escalated with evidence and clear options.
* Risk & Governance Support: Maintain a decision‑focused risk register, prepare concise risk summaries and evidence packs and improve governance where it enhances clarity and accountability.
Why This Role is Different
* Not policy‑only
* Not compliance‑led
* Focused on real delivery, real controls and real outcomes
Requirements
Essential experience: Hands‑on experience in information security roles with technical and assurance responsibilities. Experience assessing vendors, SaaS platforms or third parties. Strong understanding of cloud and SaaS security, identity and access management, secrets management and key rotation, vulnerability management. Comfortable working with engineers and delivery teams and communicating risk clearly and credibly.
Desirable: Experience supporting investor‑led or audit requirements, familiarity with modern delivery tooling such as Azure DevOps, exposure to secure design or architecture reviews and ability to thrive in fast‑moving, low‑process environments.
Benefits
Benefits are designed to enhance wellbeing and provide flexibility.
* Core working hours with flexibility; two weeks “Work from Anywhere” per year.
* 28 days annual leave plus bank holidays; your birthday off; purchase additional leave.
* 5% matched pension scheme; life assurance; discounted gym membership; health cash plan; confidential mental wellbeing support.
* Cycle to Work scheme; seasonal ticket loan.
* 25% off at Fora cafés; two volunteer days per year.
We are an equal opportunity employer and welcome applications from all backgrounds.
#J-18808-Ljbffr