Data & Information Security Analyst (18‑Month FTC) Compliance & IT | Birmingham or Leeds An established, full‑service organisation with a national footprint is seeking a Data & Information Security Analyst to join its Compliance and IT functions on an 18‑month fixed‑term contract. This is a key role responsible for protecting the firm's digital assets, maintaining security accreditations, and supporting a strong culture of information security across the business. The Role Working across both Compliance and IT, the successful candidate will play a central part in monitoring, analysing and escalating security incidents, as well as implementing and maintaining controls aligned to ISO 27001:2022 and Cyber Essentials. You will collaborate closely with internal teams and external partners to ensure the organisation's systems, data and processes remain secure, resilient and compliant. Key Responsibilities Monitor networks and systems for suspicious activity and potential breaches. Investigate and escalate security incidents, ensuring timely and effective responses. Document incidents with clear analysis and remediation actions. Conduct vulnerability assessments and monthly endpoint security checks. Coordinate penetration testing (physical and black‑box) to identify risks. Work with IT teams to ensure remediation actions are implemented. Develop and maintain security policies, procedures and standards. Deliver security awareness training and promote a strong security culture. Stay informed on emerging technologies and recommend improvements. Support data gathering for Data Subject Access Requests. Conduct internal audits aligned to ISO 27001 requirements. Skills & Experience Strong knowledge of ISO 27001:2022. 3 years' experience in a similar role with a relevant degree, or 5 years' industry experience. Experience within the legal or professional services sector. Relevant certifications such as CISSP, CISM or CompTIA Security. Knowledge of NIST, UK GDPR and Cyber Essentials. Proficiency with security tools (XDR, EDR, SIEM). Strong communication and teamwork skills. Ability to prioritise workloads and meet deadlines. Proactive, service‑oriented approach with enthusiasm for continuous improvement. Location & Working Pattern Based in Birmingham or Leeds. Hybrid working : 3 days in office during probation (6 months), then 2 days thereafter. Occasional travel to London may be required. Due to the high volume of applications, we are not able to respond to all enquiries. If you have not received a response within 72 hours, please assume you have not been shortlisted at this stage, however thank you for taking the time to apply.