Information Security Analyst

Information Security Analyst

Hybrid (Cheltenham, 3 Days Onsite + Flexible Working) | £55,729–£65,729 + Strong UK Benefits | Strategic Cyber Investment

Be part of a forward-thinking law firm undergoing a major cyber transformation. As an Information Security Analyst, you’ll support governance, lead audits, and build security resilience across multiple jurisdictions.

1. Maintain and improve the ISMS, including policies, procedures, and guidelines
2. Ensure ongoing ISO 27001:2022 alignment across UK and international offices
3. Conduct internal audits, lead remediation efforts, and support third-party reviews
4. Run supplier due diligence and respond to client risk assessments
5. Investigate and escalate incidents, contributing to ongoing threat awareness
6. Deliver awareness training and drive adoption of secure behaviours

1. Experience in information security or compliance-based roles
2. Knowledge of ISO 27001, Cyber Essentials, NIST or similar frameworks
3. Ability to communicate and collaborate across business functions
4. Comfortable working in cloud and Microsoft 365 environments
5. Certifications like CISMP, CISSP or ISO 27001 Lead Auditor are a bonus