Enable job alerts via email!

Information Security Analyst

JR United Kingdom

Cheltenham

Remote

GBP 58,000

Full time

4 days ago

Be an early applicant

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

A leading company in the UK is hiring an Information Security Assurance Analyst to strengthen their security compliance capabilities. This fully remote role involves coordinating control assessments, managing documentation, and improving processes within a high-growth team focused on regulatory compliance.

Benefits

Enterprise Benefits (Life Insurance, Medical, Pension)

Qualifications

Understanding of security regulations and standards.
Knowledge of DORA, PCDSS, SARBOX is advantageous.

Responsibilities

Coordinate control assessments and evaluations of security controls.
Maintain documentation of assessments and remediation activities.
Prepare for audits and manage third-party assessments.

Skills

Controls & Compliance

Risk Analysis

Documentation

Social network you want to login/join with:

Information Security Analyst, Cheltenham

Client: Cloud Decisions

Location: Cheltenham, UK

Job Category: Other

EU work permit required: Yes

Job Views: 5

Posted: 31.05.2025

Expiry Date: 15.07.2025

Job Description:

Upto £57,500 + Enterprise Benefits (Life Ins/Medical/Pension)

Fully Remote (UK only)

***Please Note: NOT A CYBER SEC TECHNICAL ROLE***

Be part of their high growth Information Security plans as they build the team to x4.

Cloud Decisions has partnered with one of the UK’s most exciting enterprise technology transformations: a multi-billion-pound, employee-owned group, one of the top 10 largest employee-owned businesses in the UK, and a major player in insurance across 100+ countries.

Following acquisitions and digital modernization, they’re hiring an Information Security Assurance Analyst who understands Controls & Compliance with security regulations and standards. The role involves working in a small, high-trust team, autonomously building InfoSec capabilities to ensure regulatory compliance, information security maturity, and readiness for audits, tenders, or risk reviews.

Control/Compliance Assessment Duties:

Schedule and Coordinate Assessments: Coordinate control assessments with control owners, asset custodians, and third parties.
Evaluate Controls: Assess design and effectiveness of security controls against policies and standards.
Documentation Maintenance: Keep documentation of assessments and remediation activities up to date.
Organise Control Evidence: Ensure all evidence is well-organized and accessible.
Notify Deviations: Notify relevant parties of process deviations.
Risk Analysis Reports: Produce reports on control deficiencies and their impact on risks.
Communicate Findings: Clearly communicate issues to security leadership.
Dashboard and Reporting Input: Keep dashboards and reports current.
System Security Plans (SSPs): Support data/process owners in documenting security requirements, controls, testing, and monitoring.

Compliance/Control Improvement Duties:

Update Processes: Coordinate updates for process gaps.
Enhance Procedures: Assist in documenting and improving procedures.
Propose Enhancements: Suggest control and procedure improvements.
Reporting Support: Support monthly and quarterly reporting.

Audit/Assessment Duties:

Third-Party Due Diligence: Manage third-party assessments and responses.
Audit Preparation and Support: Prepare evidence and respond to audit requests.

InfoSec effectiveness - collaboration/continuous improvement:

Continuous Improvement: Identify and implement process improvements.
Training and Development: Assist in training team and stakeholders.
Vendor Management: Ensure vendors have BCDR plans and conduct assessments.

Knowledge of DORA, PCDSS, SARBOX is advantageous but not essential.

Get your free, confidential resume review.

or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.