Information Security Analyst Hybrid (Central London, 3 Days Onsite Flexible Working) | £55,000–£65,000 Strong UK Benefits | Strategic Cyber Investment Be part of a forward-thinking law firm undergoing a major cyber transformation. As an Information Security Analyst, you’ll support governance, lead audits, and build security resilience across multiple jurisdictions. What You’ll Be Doing Maintain and improve the ISMS, including policies, procedures, and guidelines Ensure ongoing ISO 27001:2022 alignment across UK and international offices Conduct internal audits, lead remediation efforts, and support third-party reviews Run supplier due diligence and respond to client risk assessments Investigate and escalate incidents, contributing to ongoing threat awareness Deliver awareness training and drive adoption of secure behaviours What You’ll Bring Experience in information security or compliance-based roles Knowledge of ISO 27001, Cyber Essentials, NIST or similar frameworks Ability to communicate and collaborate across business functions Comfortable working in cloud and Microsoft 365 environments Certifications like CISMP, CISSP or ISO 27001 Lead Auditor are a bonus