Enable job alerts via email!

Information Security Analyst

JR United Kingdom

Leeds

Remote

GBP 45,000 - 58,000

Full time

3 days ago

Be an early applicant

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

A leading enterprise technology group is looking for an Information Security Assurance Analyst to support compliance and controls assessments within their growing InfoSec team. This role involves working independently in a high-trust environment to enhance security capabilities and ensure regulatory compliance while preparing for audits and risk reviews.

Qualifications

Understanding controls and compliance with security regulations.
Experience in preparing for audits and risk reviews.

Responsibilities

Coordinate and evaluate controls assessments.
Maintain documentation for assessments and remediation activities.
Communicate findings to security leadership.

Social network you want to login/join with:

Information Security Analyst, Leeds, West Yorkshire

Client: Cloud Decisions

Location: Leeds, West Yorkshire, United Kingdom

Job Category: Other

EU work permit required: Yes

Job Views:

Posted:

06.06.2025

Expiry Date:

21.07.2025

Job Description:

Upto £57,500 + Enterprise Benefits (Life Ins/Medical/Pension)

Fully Remote (UK only)

***Please Note: NOT A CYBER SEC TECHNICAL ROLE***

Be part of their high growth Information Security plans as they build the team to x4.

Cloud Decisions has partnered with a leading UK enterprise technology group, one of the top 10 largest employee-owned businesses in the UK, and a major player in global insurance across 100+ countries.

They are hiring an Information Security Assurance Analyst who understands controls & compliance with security regulations and standards. The role involves working autonomously in a small, high-trust team to build InfoSec capabilities, ensure regulatory compliance, and prepare for audits, tenders, or risk reviews.

Control/Compliance Assessment Duties:

Schedule and Coordinate Assessments: Coordinate control assessments with control owners, asset custodians, and third parties.
Evaluate Controls: Assess the design and effectiveness of technical and non-technical security controls against policies, standards, and procedures.
Documentation Maintenance: Keep documentation of assessments and remediation activities current.
Organise Control Evidence: Ensure all control evidence is organized and accessible.
Notify Deviations: Notify relevant parties of process deviations.
Risk Analysis Reports: Produce reports on control deficiencies and their impact on risks.
Communicate Findings: Clearly communicate issues to security leadership.
Dashboard and Reporting Input: Update dashboards and reporting databases.
System Security Plans (SSPs): Support documentation of security requirements for information systems and assist in their testing and ongoing monitoring.

Compliance/Control Improvement Duties:

Update Processes: Coordinate updates for identified process gaps.
Enhance Procedures: Assist in documenting and designing improved procedures and tests.
Propose Enhancements: Recommend control and procedure improvements.
Reporting Support: Assist in regular reporting on assessment activities.

Audit/Assessment Duties:

Third-Party Due Diligence: Manage third-party assessments and respond to requests.
Audit Preparation and Support: Prepare evidence and respond to audit inquiries.

InfoSec Effectiveness - Collaboration/Continuous Improvement:

Continuous Improvement: Identify and implement process enhancements.
Training and Development: Train team members on assessment methodologies.
Vendor Management: Assess vendor BCDR plans and capabilities regularly.

Knowledge of DORA, PCDSS, SARBOX is advantageous but not essential.

Get your free, confidential resume review.

or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.