Information Security Analyst

Information Security Analyst

Application Deadline: 2 July 2025

Department: IT

Employment Type: Permanent - Full Time

Location: London

Description

We are looking for a passionate, highly motivated, and detail-oriented individual from an IT background, to join our Information Security team. As an Information Security Analyst, you will play a vital role in ensuring the Confidentiality, Integrity, and Availability of the organisation’s data and systems. You will work closely with the current Information Security team, the IT Department, and stakeholders across the organisation, to detect and mitigate potential threats, assess vulnerabilities, and implement appropriate controls and countermeasures. This is an excellent opportunity to gain valuable experience in Information Security and contribute to the protection of the organisation.

Key Responsibilities

 Responsibilities (working with the Information Security team):

• Stay up to date with latest technologies, best practice, trends, and existing and emergent threats.
• Monitor, analyse, and respond to security events/alerts/incidents/breaches, including as an escalation point out of hours for business teams
• Create, monitor, and analyse regular vulnerability scans across endpoints, websites, and applications
• Conduct security assessments, including:

o   Internal/external applicationso   Third party vendors

• Collaborate with other teams in IT and the wider business to advise on security requirements/controls at all stages of the process (design, development, testing, and deployment)
• Conduct security simulations (org wide and targeted) to assist the wider employee awareness program.
• Provide training and upskill staff (technical and non-technical) on new processes, emergent threats, and wider awareness on security topics.

We would like to meet someone who is

• 3 Years minimum in an IT operational role (or similar)
• Cyber security certifications with related experience (SSCP, Sec+ or similar)
• Basic knowledge of cyber security and networking concepts
• Familiarity with common security frameworks, such as NIST CSF, CIS Controls, or similar
• Basic understanding/experience of penetration test methodologies and tools
• Excellent problem solving and analytic skills.
• Strong written and verbal communications skills for both technical and non-technical audiences
• Ability to work both independently and collaboratively with a variety of staff, both technical and non-technical
• Ability to shift priorities on the go, based on both Security alerts and changing business priorities.

 Desired:

• Experience within the Retail sector with exposure to EPOS systems
• Previous experience with security tools (SIEM, Endpoint Security Tools, Email Gateway, Vulnerability Management etc)

 Note: This description is indicative but not exhaustive, and additional tasks and responsibilities may be required. The organisation reserves the right to add, modify, or remove duties as necessary.

Benefits

• Competitive salary and benefits package
• Remote working, 1-2 times per month in the office
• Holiday allowance
• 50% staff discount & 25% for family and friends
• Pension scheme