Information Security Analyst

Social network you want to login/join with:Information Security Analyst, northampton

col-narrow-leftClient:

Prism DigitalLocation:

northampton, United KingdomJob Category:

Other-EU work permit required:

Yescol-narrow-rightJob Views:

4Posted:

22.08.2025Expiry Date:

06.10.2025col-wideJob Description:

Hybrid in Coventry with monthly travel to LondonSecurity certification support and career development built-inHelp shape a high-stakes security program as a hands-on GRC Analyst supporting a global financial institution’s banking expansion. You’ll be central to their mission of scaling a modern InfoSec environment, balancing regulatory rigor, ethical standards and BAU resilience.You’ll focus on third-party security assessments, metrics reporting, and supporting certification frameworks including ISO27001 and SOC2. Expect close collaboration across risk, technology and compliance stakeholders. All while operating at pace, with visibility and trust from the top down.What you’ll bring:3+ years

in an InfoSec or IT security role within a regulated or financial firmSecurity certifications:

SSCP, Security+, or equivalentStrong GRC foundation:

Able to interpret risk frameworks and speak the language of ISO, SOC2, NIST, etc.Comfortable with security tooling and metrics-driven reportingConfident communicator:

Translate acronyms into action, and engage stakeholders with clarity and purposeEthical mindset:

understand when to escalate, when to challenge, and how to own your areaWhat you’ll be doing:ISO27001 and SOC2 governance:

day-to-day support of the ISMS, remediation tracking, risk reviewsThird-party risk assessments:

conduct supplier security reviews aligned to appetite and regulatory frameworksSecurity awareness training:

drive phishing simulations and curate internal content via ProofpointBAU InfoSec operations:

ticket triage, KPI reporting, risk dashboards, vulnerability and patch monitoringCompliance tooling:

operate and report using platforms like Protecht, Panorays, Rapid7, and ArmisBanking enablement:

keyInfoSec input into a major new market launchPanorays

– Third-party risk managementRapid7, Armis

– Vulnerability and asset visibilityProofpoint

– Phishing simulations and awareness contentMicrosoft Purview

– Data governance and policy enforcementAzure (beneficial)

– Cloud IAM, logging, and security monitoringWhy this role?High-impact GRC project work tied to new market expansionStrong internal security culture: backed by a collaborative team and engaged InfoSec leadershipA clear opportunity to stretch across awareness, compliance, and operational ..... full job details .....