158 Information Security Analyst jobs in London
Information Security Analyst
Posted today
Job Viewed
Job Description
We are Vitesse – the treasury and payment partner of choice for insurance.
Formed in 2014 by a team of proven FinTech entrepreneurs, we are an FCA-regulated business providing global claim funds management and payment solutions. Operating one of the largest banking and payment settlement networks in the world, we give our customers direct access to 200 countries and currencies. Through a single integration, insurers can use this network to pay claims in as fast as 45 seconds and deliver a superior claimant experience. Our market-leading treasury proposition provides insurers with transparency and control over their claim funds, even when delegated to third-parties, allowing them to have their money in the right place, at the right time, to make that all-important payment when customers need it most.
With over 260 employees across our London headquarters, Europe, and the US, $93m Series C funding secured, our US licence approved and exceeding £15bn in processed transactions, we are only just getting started.
We are collaborative, customer centric and work with integrity, whilst partnering with some of the biggest insurance leaders including Lloyd’s of London and Many Pets. We take huge pride in our company culture, ensuring that everyone has a part to play, an opportunity to be heard, be involved, and the ability to make a real difference. As we continue to scale up, we want like-minded humans to join us on this exciting journey. Are you ready?
Your Mission:
We are seeking a skilled and motivated Information Security Analyst to join our team, reporting into the CISO. You will play a crucial role in safeguarding our organisations digital assets and infrastructure from cyber threats. You will be responsible for analysing security measures, identifying vulnerabilities, and help implement effective solutions to mitigate risks.
This role has a requirement for the jobholder to be part of an out of hours call-out rota, which will usually be 1 in 4 or 5 weeks, in addition to being available for short-term assignments in the US to support our North American business.
The role will require at least 2 days onsite in our London office.
The ideal candidate will have a strong understanding of information security principles, excellent analytical skills, and the ability to adapt to evolving threats in the cybersecurity landscape.
Your Responsibilities:
Governance: Risk / Compliance / Assurance:
- Monitor security systems including intrusion detection, firewalls, and SIEM. Collaborate with our external SOC to detect and respond to security incidents in a timely manner.
- Participate in incident response activities, including incident triage, containment, eradication, and recovery efforts.
- Conduct thorough investigations of security incidents and provide detailed reports on findings and recommendations for remediation.
- Help contribute to regular security assessments and audits to identify vulnerabilities and weaknesses in systems, networks, devices, and applications.
- Serve as a subject matter expert on security-related matters, providing guidance and support to other teams and departments as needed, and as reported through the help desk system.
- Collaborate with IT teams and other stakeholders, contributing to the design and implementation of security controls and measures to protect against cyber threats.
- Stay up to date with the latest security trends, technologies, and best practices, and provide recommendations for continuous improvement.
- Assist with the management of security awareness training and workshops for employees to educate them about security risks and best practices for maintaining a secure work environment.
- Participate in the development and maintenance of disaster recovery plans to ensure the organisation's ability to respond to and recover from security incidents.
- Collaborate with internal teams during due diligence exercises to ensure that key security controls are documented as part of each submission.
Requirements
- Certifications such as CISSP, CISM, or CompTIA Security+, certifications are highly desirable.
- Proven experience working in information security, with a good understanding of security principles, protocols, and technologies.
- Experience with information security standards including ISO 27001, NIST and Cyber Essentials.
- Experience with security assessment tools and techniques, including vulnerability scanning and penetration testing.
- Good understanding of Microsoft Azure, Office 365 and Microsoft E5 security tooling.
- Strong analytical and problem-solving skills, with the ability to analyse complex systems and identify security risks and vulnerabilities.
- Excellent communication and interpersonal skills, with the ability to effectively convey technical information to non-technical stakeholders.
- Ability to work independently and collaboratively in a fast-paced environment, with a strong sense of accountability and attention to detail.
- Sound judgment and decision-making abilities, especially in high-pressure situations requiring quick and accurate assessments.
- High ethical standards and a commitment to maintaining confidentiality.
Benefits
- 25 days Holiday per year (increasing by 1 day per years' service, up to 30 days) + Bank Holidays
- Hybrid working arrangements – minimum 2 days in the office, Tuesday - Thursday
- Contributory pension scheme
- Enhanced Parental leave
- Cycle to Work Scheme
- Private Medical Insurance with AXA
- Unlimited access to therapy sessions through our partner, Oliva
- Discounted Gym membership through Gympass
- Financial Coaching with Octopus Wealth
- 2 days of volunteering leave per year
- Sabbatical after 5 years’ service
- Life Assurance - MetLife (UK employees only)
- Ongoing Learning and Development to support you reach your career goals
We are Vitesse – the payment provider of choice for the insurance and treasury industry.
Formed in 2014 by a team of proven FinTech entrepreneurs, we are an FCA regulated payments business that is driven to be the payment partner of choice for the insurance market, by providing global payment services and treasury optimisation. Operating one of the largest domestic banking and payment settlement networks in the world, we give our customers direct access to more than 170 countries and territories, covering over 110 currencies. Through a single integration, insurers can use this network to pay claims in as fast as 45 seconds, delivering a better customer experience to their claimants. Our market-leading treasury optimisation service brings complete control and transparency to insurers and allows them to have their money in the right place, at the right time, to make that all important payment - fast, and when their customers need it most.
With now over 160 employees across Europe and our London headquarters, $26m series B funding in 2022 in the bag and approaching £8bn in processed transactions, we are only just getting started.
We are collaborative, customer centric and work with integrity, whilst partnering with some of the biggest insurance leaders including Lloyd’s of London and Many Pets. We take huge pride in our company culture, ensuring that everyone has a part to play, an opportunity to be heard, be involved, and the ability to make a real difference.
As we continue to scale up, we want like-minded humans to join us on this exciting journey. Are you ready?
Vitesse at our best – our values
The Vitesse values are a true reflection of what it takes to thrive in our business, so it’s important to us that any employee who joins our business is aligned with these 3 attributes
Confident Humility
We don’t do ego and we know that unless we all win, none of us win. We admit when we’re wrong, ask for help and always think about the wider business before ourselves.
Driven to Succeed
We see the opportunity ahead of us and we won’t stop until we fulfil the potential we know we have. We hold ourselves to high standards and deliver high quality outcomes for Vitesse and our customers.
Tenacious Responsibility
We take ownership for our actions and decisions, and face into the challenges that come our way. We are committed to seeing things through to completion, even in the face of adversity.
We are an Equal Opportunity Employer We are committed to creating an inclusive environment that enables everyone to perform at their best, where we recognise the rights of all individuals to mutual respect and where there is an unbiased acceptance of others. Our policies and practices aim to promote an environment that is free from all forms of Unfair discrimination and values the diversity of all people. At the heart of our policy, we seek to treat people fairly and with dignity and respect.
Senior Information Security Analyst
Posted today
Job Viewed
Job Description
Key Responsibilities:
- Develop, implement, and maintain security policies, procedures, and controls across the organisation.
- Monitor security systems, including SIEM, IDS/IPS, and endpoint protection, for potential threats and anomalies.
- Conduct vulnerability assessments and penetration testing to identify and remediate security weaknesses.
- Investigate and respond to security incidents, performing forensic analysis and providing detailed post-incident reports.
- Collaborate with IT teams to ensure secure system configurations and network architecture.
- Stay abreast of the latest cybersecurity trends, threats, and regulatory requirements.
- Develop and deliver security awareness training to employees.
- Contribute to the development and maintenance of the organisation's incident response plan.
- Manage and configure security tools and technologies.
- Provide expert advice and guidance on information security best practices to all levels of the organisation.
- Proven experience in information security, with a focus on security analysis and incident response.
- In-depth knowledge of security frameworks (e.g., ISO 27001, NIST) and compliance standards.
- Proficiency in security monitoring tools, vulnerability scanners, and penetration testing methodologies.
- Strong understanding of network security, cryptography, and application security.
- Experience with cloud security (AWS, Azure, GCP) is a plus.
- Excellent analytical and problem-solving skills, with a keen attention to detail.
- Strong communication and interpersonal skills, with the ability to explain complex technical concepts to non-technical audiences.
- Relevant certifications such as CISSP, CISM, CEH, or equivalent.
- Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent work experience.
Lead Information Security Analyst
Posted 1 day ago
Job Viewed
Job Description
Key Responsibilities:
- Develop, implement, and maintain comprehensive information security policies, procedures, and standards.
- Lead and mentor a team of information security analysts, providing technical guidance and career development.
- Oversee the operation and enhancement of security infrastructure, including firewalls, intrusion detection/prevention systems, and SIEM solutions.
- Conduct regular vulnerability assessments and penetration testing, and manage remediation efforts.
- Develop and manage the incident response plan, coordinating timely and effective responses to security breaches.
- Ensure compliance with relevant regulations and industry best practices (e.g., GDPR, ISO 27001).
- Conduct security awareness training for employees.
- Evaluate and recommend new security technologies and solutions.
- Perform risk assessments and develop mitigation strategies.
- Act as a key point of contact for security-related matters, liaising with internal departments and external auditors.
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. Master's degree preferred.
- Minimum of 8 years of progressive experience in information security, with at least 3 years in a leadership role.
- In-depth knowledge of cybersecurity principles, frameworks, and technologies.
- Proven experience with SIEM tools, vulnerability management, incident response, and threat intelligence.
- Strong understanding of network security, application security, and cloud security concepts.
- Relevant certifications such as CISSP, CISM, or CEH are highly desirable.
- Excellent leadership, communication, and analytical skills.
- Ability to work under pressure and manage critical security incidents.
- Experience in the financial services sector is a strong advantage.
Senior Information Security Analyst
Posted 1 day ago
Job Viewed
Job Description
Key responsibilities include monitoring security alerts, investigating potential security incidents, performing vulnerability assessments and penetration testing, developing and implementing security policies and procedures, and providing security awareness training to staff. You will play a crucial role in managing and enhancing our security infrastructure, including firewalls, intrusion detection/prevention systems, SIEM solutions, and endpoint security tools. The ideal candidate will possess exceptional analytical and problem-solving skills, a proactive approach to identifying and mitigating risks, and a strong understanding of relevant compliance frameworks (e.g., ISO 27001, GDPR, PCI DSS). Experience with cloud security (AWS, Azure, GCP) and scripting languages (e.g., Python, Bash) is highly desirable. This is an excellent opportunity for a seasoned security professional to take on significant responsibility, influence security strategy, and work within a dynamic, innovative, and remote-first environment. You will be instrumental in safeguarding our operations and maintaining the trust of our clients.
Responsibilities:
- Monitor and analyse security alerts from various security tools (SIEM, IDS/IPS, EDR).
- Investigate and respond to security incidents, conducting root cause analysis.
- Perform regular vulnerability assessments and penetration testing.
- Develop, implement, and maintain security policies, standards, and procedures.
- Manage and configure security technologies such as firewalls, WAFs, and VPNs.
- Conduct security awareness training for employees.
- Assess and mitigate security risks across the organisation.
- Collaborate with IT teams to ensure secure system configurations.
- Stay current with the latest cybersecurity threats, trends, and technologies.
- Contribute to the development of incident response plans and disaster recovery strategies.
- Ensure compliance with relevant industry regulations and standards.
- Provide technical guidance and mentorship to junior security staff.
- Bachelor's degree in Computer Science, Cybersecurity, or a related field.
- Significant experience (5+ years) in information security.
- Strong understanding of network security, endpoint security, and application security.
- Proficiency with SIEM, IDS/IPS, and vulnerability scanning tools.
- Experience with incident response and forensic analysis.
- Knowledge of cloud security principles (AWS, Azure, GCP).
- Relevant certifications such as CISSP, CISM, or CompTIA Security+.
- Excellent analytical, problem-solving, and communication skills.
- Ability to work independently and manage tasks effectively in a remote setting.
Senior Information Security Analyst
Posted 1 day ago
Job Viewed
Job Description
The successful candidate will be responsible for the continuous monitoring of security systems, threat detection, incident response, and vulnerability management. You will leverage your expertise in security technologies and protocols to analyze security alerts, conduct in-depth investigations into potential security breaches, and implement effective countermeasures. This role requires a proactive approach to identifying and mitigating risks, ensuring compliance with industry best practices and regulatory requirements.
Key responsibilities include developing and refining security policies and procedures, conducting security awareness training, performing risk assessments, and managing security projects. You will work closely with IT teams and business units to embed security best practices throughout the organization. The ability to stay ahead of emerging threats, analyze complex security data, and communicate technical information effectively to both technical and non-technical audiences is paramount. This fully remote position demands self-discipline, excellent time management, and a strong commitment to maintaining the highest standards of information security.
Responsibilities:
- Monitor security systems (SIEM, IDS/IPS, EDR) for security threats and anomalies.
- Investigate and respond to security incidents, performing forensic analysis and implementing remediation steps.
- Conduct vulnerability assessments and penetration testing, recommending and overseeing remediation efforts.
- Develop, implement, and maintain information security policies, standards, and procedures.
- Perform risk assessments and identify security gaps, proposing appropriate controls.
- Collaborate with IT and business teams to ensure security is integrated into all aspects of operations.
- Conduct security awareness training for employees.
- Stay current with the latest threat intelligence, vulnerabilities, and security technologies.
- Manage and configure security tools and technologies.
- Contribute to the continuous improvement of the organization's security posture.
- Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field.
- Minimum of 5 years of experience in information security, with a focus on security operations and incident response.
- Strong understanding of security frameworks (e.g., NIST, ISO 27001) and regulatory compliance.
- Hands-on experience with SIEM, EDR, vulnerability scanning, and network security tools.
- Proficiency in scripting languages (e.g., Python, PowerShell) for automation is a plus.
- Excellent analytical, problem-solving, and critical thinking skills.
- Strong communication and interpersonal skills, with the ability to explain complex technical concepts clearly.
- Relevant security certifications (e.g., CISSP, CISM, Security+) are highly desirable.
- Proven ability to work independently and manage time effectively in a remote environment.
Senior Information Security Analyst
Posted 1 day ago
Job Viewed
Job Description
Key Responsibilities:
- Monitor security systems and analyze security alerts to detect and respond to threats.
- Investigate and manage security incidents, including containment, eradication, and recovery.
- Perform vulnerability assessments and penetration testing to identify and remediate security weaknesses.
- Develop, implement, and maintain security controls and technologies.
- Stay current with emerging threats, vulnerabilities, and security trends.
- Contribute to the development and enhancement of security policies, procedures, and standards.
- Conduct security awareness training for employees.
- Collaborate with IT teams to ensure secure system configurations and deployments.
- Participate in security audits and compliance activities.
- Provide expert advice on information security best practices.
Senior Information Security Analyst
Posted 1 day ago
Job Viewed
Job Description
Responsibilities:
- Monitor and analyze security alerts and events from various security systems (SIEM, IDS/IPS, firewalls).
- Conduct threat intelligence gathering and vulnerability assessments.
- Develop and implement security policies, standards, and procedures.
- Lead incident response efforts, including investigation, containment, eradication, and recovery.
- Perform penetration testing and security audits.
- Manage security awareness training programs for employees.
- Evaluate and recommend new security technologies and solutions.
- Collaborate with IT teams to ensure secure system configurations and deployments.
- Stay current with evolving cybersecurity threats, vulnerabilities, and mitigation strategies.
- Develop and maintain security documentation, including incident response plans and playbooks.
Qualifications:
- Bachelor's degree in Computer Science, Information Security, or a related field. Master's degree or relevant certifications (CISSP, CISM, GIAC) are highly desirable.
- Minimum of 5 years of experience in information security, with a strong focus on security analysis and incident response.
- In-depth knowledge of cybersecurity frameworks (NIST, ISO 27001), network security, and common attack vectors.
- Proficiency with SIEM tools (e.g., Splunk, QRadar), vulnerability scanners, and endpoint detection and response (EDR) solutions.
- Experience in digital forensics and incident response methodologies.
- Strong analytical and problem-solving skills with meticulous attention to detail.
- Excellent communication and interpersonal skills, with the ability to explain technical concepts to non-technical audiences.
- Ability to work independently and manage time effectively in a remote environment.
- Demonstrated experience in developing and implementing security best practices.
- A proactive approach to identifying and addressing potential security risks.
Be The First To Know
About the latest Information security analyst Jobs in London !
Senior Information Security Analyst
Posted 2 days ago
Job Viewed
Job Description
Key Responsibilities:
- Monitor security alerts and events from various security tools (SIEM, IDS/IPS, EDR).
- Investigate and respond to security incidents, performing forensic analysis where necessary.
- Conduct vulnerability assessments and penetration testing.
- Implement and manage security controls and technologies.
- Develop and update security policies, standards, and procedures.
- Perform risk assessments and recommend mitigation strategies.
- Assist in security awareness training programs for employees.
- Collaborate with IT teams to ensure secure system configurations.
- Stay current with emerging threats and security technologies.
- Contribute to security architecture reviews and design.
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
- Minimum of 5 years of experience in information security or cybersecurity roles.
- Strong knowledge of security principles, protocols, and technologies (e.g., TCP/IP, firewalls, VPNs, encryption).
- Experience with SIEM tools (e.g., Splunk, QRadar) and EDR solutions.
- Understanding of threat intelligence and incident response methodologies.
- Relevant certifications such as CISSP, Security+, or CEH are highly desirable.
- Excellent analytical and problem-solving skills.
- Strong written and verbal communication abilities.
- Ability to work effectively in a hybrid work model.
Senior Information Security Analyst
Posted 3 days ago
Job Viewed
Job Description
Key Responsibilities:
- Conduct comprehensive security risk assessments and vulnerability analyses to identify potential threats and weaknesses.
- Develop, implement, and manage security policies, procedures, and best practices.
- Oversee the implementation and maintenance of security technologies, including firewalls, intrusion detection/prevention systems, and SIEM solutions.
- Lead incident response activities, including investigation, containment, eradication, and recovery.
- Provide expert guidance on security best practices and compliance requirements (e.g., GDPR, ISO 27001).
- Perform regular security audits and penetration testing to ensure system integrity.
- Educate and train staff on security awareness and best practices.
- Stay abreast of emerging security threats, trends, and technologies, and recommend appropriate countermeasures.
- Collaborate with IT and development teams to integrate security into the entire system development lifecycle.
- Contribute to the continuous improvement of the organisation's cybersecurity framework.
- Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field.
- Minimum of 5 years of experience in information security, with a focus on threat analysis, incident response, and security architecture.
- Proven experience with security tools such as SIEM, IDS/IPS, vulnerability scanners, and endpoint security solutions.
- Strong understanding of networking protocols, operating systems, and web application security.
- Experience with cloud security concepts (AWS, Azure, GCP) is highly desirable.
- Excellent analytical and problem-solving skills, with the ability to think critically under pressure.
- Strong communication and interpersonal skills, with the ability to explain complex technical issues to non-technical stakeholders.
- Relevant security certifications such as CISSP, CISM, or CEH are a plus.
- Demonstrated ability to work independently and manage multiple priorities in a remote setting.
Senior Information Security Analyst
Posted 3 days ago
Job Viewed
Job Description
Responsibilities:
- Monitor security alerts and events from various sources (SIEM, IDS/IPS, firewalls, etc.) and conduct in-depth investigations.
- Develop and implement security policies, procedures, and guidelines.
- Conduct regular vulnerability assessments and penetration testing to identify security weaknesses.
- Manage and maintain security infrastructure, including firewalls, intrusion detection systems, and endpoint protection solutions.
- Respond to security incidents, including containment, eradication, and recovery, and conduct post-incident analysis.
- Educate employees on security best practices and conduct security awareness training.
- Stay up-to-date with the latest security threats, vulnerabilities, and countermeasures.
- Collaborate with IT teams to ensure secure system configurations and deployments.
- Assist in the development and implementation of disaster recovery and business continuity plans.
- Participate in security audits and ensure compliance with relevant regulations (e.g., GDPR, ISO 27001).
Qualifications:
- Bachelor's degree in Computer Science, Information Security, or a related field; Master's degree is a plus.
- Minimum of 5 years of experience in information security, with a focus on security operations and incident response.
- Strong understanding of network security principles, protocols, and technologies.
- Hands-on experience with SIEM tools (e.g., Splunk, QRadar), IDS/IPS, and endpoint security solutions.
- Experience with vulnerability assessment and penetration testing tools and methodologies.
- Knowledge of security frameworks and compliance standards (e.g., NIST, ISO 27001, GDPR).
- Excellent analytical and problem-solving skills, with the ability to think critically under pressure.
- Strong communication and interpersonal skills, with the ability to explain technical concepts to non-technical audiences.
- Relevant security certifications such as CISSP, CISM, CEH, or Security+ are highly desirable.
- Experience in cloud security (AWS, Azure, GCP) is a significant advantage.