2,981 Ethical Hacking jobs in the United Kingdom

Information Security Analyst

Up to 50,000 + benefits

Hereford | Hybrid

Permanent | Full-time

We are looking for an experienced Information Security Analyst to join our client who will play a key role in driving compliance, governance, and continual improvement across key security frameworks including ISO 27001, PCI DSS, and Cyber Essentials Plus.

Key Responsibilities:

* Lead on the operation and continual improvement of the Information Security Management System (ISMS)

* Coordinate internal and external audit readiness for ISO 27001, PCI DSS, and Cyber Essentials Plus

* Draft and update information security policies, procedures, and technical standards

* Work with procurement and commercial teams to support supplier assurance and risk assessment

* Contribute to tender responses and bid processes, ensuring security and compliance requirements are met

* Promote good security practices and raise awareness across departments

* Act as an escalation point and day-to-day contact for other team members

* Stay up to date with changes in legislation and standards relating to information and cyber security

Key Skills & Experience:

Essential:

* Background in IT, Cyber Security, Information Systems, or a related discipline

* Strong working knowledge of ISO 27001, PCI DSS, and Cyber Essentials Plus

* Proven ability to support and prepare for audits, including evidence collation and audit readiness

* Excellent attention to detail and ability to produce high-quality documentation

* Strong stakeholder communication skills, both written and verbal

* Ability to build effective working relationships and influence at all levels

* Comfortable working independently and proactively across teams

Desirable:

* Experience in supplier risk management and/or tender processes

* ISO 27001 Lead Auditor/Implementer, PCIP, CISM, CompTIA Security+, or CISMP certification

What you get in return:

* Up to 50,000 per annum + benefits

* Hybrid working (3 to 4 days in office)

* Opportunity to lead and mentor within a growing security team

* Professional development and training support

This company is an equal opportunity employer and values diversity. We do not discriminate on the basis of race, religion, colour, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.

Interested?

Please submit your CV to Meg Kewley at DCS Recruitment via the link provided.

DCS Recruitment and all associated companies are committed to creating a working environment where diversity is celebrated and everyone is treated fairly, regardless of gender, gender identity, disability, ethnic origin, religion or belief, sexual orientation, marital or transgender status, age, or nationality

Information Security Analyst | Contract | Northampton | Hybrid

My client is looking for an Information Security Analyst / GRC Analyst to be a part of their growing security team.

Policy and process is already in place, so you’ll play a key role in managing Subject Access Requests (SARs), Right to Be Forgotten (RTBF) requests, and ensuring the organisation maintains the highest standards of data privacy and governance.

Key Responsibilities on the Information Security Analyst:

• Manage and respond to Subject Access Requests (SARs) in accordance with GDPR timelines and procedures.
• Oversee Right to Be Forgotten and data deletion requests, ensuring complete and compliant execution.
• Support the wider GRC and Information Security team in data protection and risk management activities.
• Help maintain the Information Security Management System (ISMS).
• Maintain accurate records of all data protection requests and actions taken.
• Provide expert advice on GDPR compliance and data subject rights.
• Liaise with internal teams and stakeholders to ensure consistent adherence to data protection principles.

Information Security Analyst Experience/Technology:

• Proven experience in GRC and Information security.
• Extensive expertise of GDPR, SAR, and Right to Be Forgotten requirements.
• Experience running user awareness campaigns.
• Hands-on experience with Microsoft Purview or other data discovery and governance tools are desirable but not necessary.
• Good communication and attention to detail.

The successful candidate will be required to work 2-days a week onsite in Northampton.

Apply now to speak with VIQU IT in confidence. Or reach out to Matt Farrell via the VIQU IT website.

Do you know someone great? We’ll thank you with up to £1,000 if your referral is successful (terms apply).

For more exciting roles and opportunities like this, please follow us on LinkedIn @VIQU IT Recruitment.

Information Security Analyst | Security+, Microsoft Purview, Defender | Global Trading Platform

• £60–70k base + 10% bonus
• Hybrid in Coventry with monthly travel to London
• Security certification support & career development built-in

Join a growing InfoSec team at the heart of a global financial institution’s expansion. As an Analyst, you’ll work hands-on with data governance, security tooling, and access management — helping to shape how a modern SME approaches cybersecurity. You’ll bring technical curiosity, the ability to interrogate data, and the confidence to advise IT teams on the practical steps that keep the business secure.

What you’ll bring:

• 3+ years’ experience in an InfoSec, IT security, or analyst role
• Security certifications: Security+ and ideally Microsoft security certifications (e.g. SC-200/SC-400)
• Experience with security tools (Microsoft Defender, web proxy, email security, CrowdStrike or equivalents)
• Knowledge of single sign-on and zero trust networks (beyond just segregation)
• Exposure to data management / governance tools (e.g. Microsoft Purview, or similar)
• Strong communicator: able to translate technical concepts into practical advice for IT and stakeholders

What you’ll be doing:

• Recertification of accounts : Pulling and interrogating data through bespoke platforms
• Security tooling : Working with Defender, web proxy, CrowdStrike-equivalent tools
• Data management : Supporting data labelling & retention projects using Purview or similar
• Governance support : Involved in data loss prevention, labelling, and stakeholder engagement (including DPO)
• Practical incident response input : Advising IT on immediate steps during incidents, converting theory into quick, actionable responses
• Ongoing InfoSec operations : Metrics, monitoring, and security projects across applications and users

Tech & tools you’ll use:

• Microsoft Purview – Data governance and policy enforcement
• Microsoft Defender – Endpoint & email protection
• CrowdStrike / equivalents – Endpoint detection & response
• Web proxy & email security tools
• Azure (beneficial) – IAM, monitoring, and security logging

Why this role?

• Be central to shaping data governance and security operations in a dynamic SME environment
• Hands-on exposure to a wide range of security tools and concepts (not siloed to audit work)
• Opportunity to advise and influence IT directly on practical security decisions
• Work alongside experienced InfoSec leadership who value mentoring and professional growth

If this sounds like something you would be interested in, please apply!

Information Security Analyst | Security+, Microsoft Purview, Defender | Global Trading Platform

• Monitoring security alerts and events to detect potential threats and breaches.
• Investigating security incidents and performing root cause analysis.
• Implementing and managing security controls and technologies (firewalls, IDS/IPS, SIEM).
• Conducting vulnerability assessments and penetration testing.
• Developing and maintaining security policies, procedures, and documentation.
• Assisting in the development and delivery of security awareness training.
• Staying up-to-date with the latest cybersecurity threats, trends, and technologies.
• Collaborating with IT teams to ensure security best practices are implemented across the infrastructure.
• Responding to and managing security incidents according to established protocols.
• Assisting with compliance activities (e.g., GDPR, ISO 27001).

• Monitor security systems and investigate security alerts and incidents.
• Perform vulnerability assessments and penetration testing.
• Develop, implement, and enforce information security policies and procedures.
• Respond to and manage security incidents, ensuring timely resolution.
• Analyze security threats and vulnerabilities, recommending mitigation strategies.
• Collaborate with IT teams to implement and maintain security controls.
• Provide security awareness training to employees.
• Stay current with cybersecurity trends, threats, and technologies.
• Ensure compliance with relevant security regulations and standards.
• Contribute to the development and improvement of the overall security posture.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Proven experience as an Information Security Analyst or in a similar cybersecurity role.
• Strong knowledge of network security, firewalls, intrusion detection/prevention systems.
• Familiarity with security frameworks (e.g., NIST, ISO 27001).
• Experience with SIEM tools and security monitoring platforms.
• Excellent analytical, problem-solving, and critical thinking skills.
• Ability to work independently and manage time effectively in a remote setting.
• Strong communication and interpersonal skills.
• Relevant certifications (e.g., CISSP, CompTIA Security+) are highly desirable.
• Experience with scripting languages is a plus.

• Monitor security systems and investigate potential security incidents.
• Conduct vulnerability assessments and penetration testing.
• Develop, implement, and enforce information security policies and procedures.
• Respond to security breaches and manage incident response activities.
• Assist in security awareness training for employees.
• Manage and configure security tools, such as SIEM and IDPS.
• Analyse security logs and data to identify threats and vulnerabilities.
• Provide technical guidance on security best practices.
• Stay up-to-date with the latest cybersecurity threats and trends.
• Contribute to the development of security architecture and strategy.

• Proven experience in an Information Security Analyst role or similar.
• Strong knowledge of cybersecurity principles, frameworks, and best practices.
• Experience with security tools such as SIEM, IDPS, and firewalls.
• Excellent analytical and problem-solving skills.
• Ability to conduct vulnerability assessments and penetration testing.
• Strong understanding of network security and data protection.
• Excellent written and verbal communication skills.
• Relevant certifications (e.g., CompTIA Security+, CISSP) are a plus.