Information Security Analyst
Birmingham area (with travel across the UK and Europe)
Hybrid / On-site 3 days per week
This is a group-level security role, working as part of an established team, supporting multiple business units and contributing to a broader programme of cyber resilience.
You’ll be hands-on with tooling, controls, and incident response – while also helping shape how security is delivered across the group. It’s a business that takes security seriously and offers room to grow your career as the function evolves.
Support and maintain group-wide security tooling — including Tenable, EDR, access controls, and SIEM
Assist in managing security incidents and work with stakeholders on resolution and reporting
Contribute to third-party security assessments and vendor risk reviews
Coordinate technical testing such as penetration tests and manage remediation activities
Carry out regular monitoring and checks to ensure security tooling is optimised
Provide advice and support to business units on security best practice and control implementation
Hands-on experience with security tooling (EDR, vulnerability scanning, access control)
Familiarity with Security frameworks such as NIST, PCI-DSS, and GDPR
Experience working with Microsoft environments (O365, Azure)
Clear communicator, able to engage with both IT and non-technical teams
Full UK driving licence required due to site and travel requirements
This Isn’t an Entry-Level Role
You’ll need real-world experience in security operations or IT with a security focus - enough to manage tooling, contribute to incidents, and confidently communicate security across the business.
Has worked in a SOC or security analyst role, and wants to take on broader responsibilities
Has been the security point-person in an IT team, leading on patching or endpoint protection
Has hands-on experience with vulnerability management tools like Tenable, and is ready to play a bigger role in shaping how security tools are implemented and optimised across the business.
This is a chance to grow with a business that’s invested in security -and to be part of a team that’s actually doing the work properly.