Social network you want to login/join with:
Information Security Analyst, Luton, Bedfordshire
Client: Prism Digital
Location: Luton, Bedfordshire, United Kingdom
Job Category: Other
EU work permit required: Yes
Job Views:
4
Posted:
22.08.2025
Expiry Date:
06.10.2025
Job Description:
* Hybrid role based in Coventry with monthly travel to London
* Support for security certification and career development opportunities
Join a high-stakes security program as a hands-on GRC Analyst supporting a global financial institution's banking expansion. Your role will involve scaling a modern InfoSec environment, balancing regulatory compliance, ethical standards, and operational resilience.
You will focus on third-party security assessments, metrics reporting, and supporting certification frameworks such as ISO27001 and SOC2. The role requires close collaboration with risk, technology, and compliance stakeholders, operating efficiently with transparency and trust from leadership.
Qualifications and experience:
* Over 3 years of experience in an InfoSec or IT security role within a regulated or financial organization
* Security certifications such as SSCP, Security+, or equivalent
* Strong foundation in GRC, familiar with risk frameworks and standards like ISO, SOC2, NIST
* Experience with security tools and metrics-driven reporting
* Excellent communication skills to translate technical concepts into actionable insights
* Ethical mindset with the ability to escalate, challenge, and take ownership of areas
Key responsibilities:
* Support ISO27001 & SOC2 governance, including ISMS management, remediation, and risk reviews
* Conduct third-party security assessments aligned with regulatory requirements
* Drive security awareness training, phishing simulations, and internal content creation
* Manage BAU InfoSec operations, including ticket triage, KPI reporting, risk dashboards, vulnerability management, and patching
* Operate and report using security platforms like Protecht, Panorays, Rapid7, and Armis
* Contribute to banking enablement, supporting new market launches with InfoSec input
* Utilize tools such as Panorays for third-party risk, Rapid7 and Armis for vulnerability management, Proofpoint for phishing simulations, Microsoft Purview for data governance, and Azure for cloud security
Why consider this role?
* High-impact projects related to new market expansion
* Supportive security culture with engaged leadership
* Opportunities to develop across awareness, compliance, and operational areas
#J-18808-Ljbffr