Overview
Join to apply for the Information Security Analyst role at Lanes Group.
The Lanes Group are the UK’s largest independent provider of water and wastewater solutions and services, playing a vital role in maintaining the nation’s water system operations. The organisation delivers a broad range of services across the UK with depots from Aberdeen to Plymouth.
About The Role: We are seeking an Information Security Analyst to support the development and maintenance of our governance, risk, and compliance activities. The successful candidate will help ensure the organisation remains compliant with Cyber Essentials, ISO 27001, and GDPR requirements, while also supporting wider security awareness initiatives. The role suits someone with strong attention to detail, excellent documentation skills, and an interest in building a career in information security governance. Occasional travel to regional sites is required; a UK driving licence is essential.
Location: Midlands
Salary: £32,000 – £37,000
Hours: Full-time, Monday to Friday (37.5 hours per week), with flexible working options.
Responsibilities
* Assist with the coordination and maintenance of ISO 27001 compliance, audits, and documentation.
* Support Cyber Essentials certification, gathering evidence and tracking remediation actions.
* Maintain accurate logs and reports for backup checks, access reviews, and other compliance processes.
* Support GDPR obligations, including Subject Access Requests (SARs), ensuring secure and timely delivery.
* Produce reports and metrics for management on compliance status and risks.
* Track and assess third-party supplier risks.
* Contribute to security awareness training and communications across the organisation.
* Provide governance input to IT and business projects, ensuring security requirements are considered from the outset.
Qualifications & Experience
* 2–5 years’ experience in IT, compliance, or data-related roles.
* Familiarity with Microsoft 365 and Azure from a compliance/security perspective.
* Exposure to security frameworks such as ISO 27001 or Cyber Essentials.
* Working towards security or governance certifications (e.g., CompTIA Security+, ISO 27001 Lead Implementer, CISMP).
Skills & Attributes
* Strong attention to detail and documentation skills.
* Analytical mindset with the ability to interpret policies and standards.
* Effective communicator, able to explain requirements across different teams.
* Organised and capable of handling multiple tasks simultaneously.
What You Will Get In Return
In joining the Lanes Group, we are committed to fostering a workplace culture that prioritises well-being, growth, and safety. Through continuous training, professional development opportunities, and a supportive environment, we empower our team to uphold high standards of integrity, collaboration, and inclusivity.
What We Offer
* 24 Days holiday plus Bank Holidays
* Pension
* Death in service
This position is open to Internal and External candidates. Any internal candidates currently employed within a division of the Lanes Group must complete an Internal Application form and submit to recruitment.
The Lanes Group plc comprises a range of established service providers and subsidiaries that complement the specialist service of Lanes. Lanes continues to expand its capability and offering to customers.
Lanes - https://www.lanesgroup.com/#our_group
Lanes I - https://lanes-infra.com/
SUS - https://sus.co.uk/
Clearflow - https://www.clearflowltd.com/
AQS - https://aqsenvironmentalsolutions.ie/
We are an equal opportunities employer and welcome applications from under-represented members of the community. Strictly no agencies please
Seniority level
* Mid-Senior level
Employment type
* Other
Job function
* Information Technology
* Industries: Utilities
Notices: Referrals increase your chances of interviewing at Lanes Group. Get notified about new Information Security Analyst jobs in Derby, England, United Kingdom.
#J-18808-Ljbffr