Information Security Analyst

Bristol, Exeter, Plymouth or Southampton

Job Title: Information Security Analyst

At Foot Anstey, we’re building something bold — and secure. If you're looking for a hands‑on role where your structured thinking, documentation skills, and collaborative mindset will help shape our long‑term information security maturity, we’d love to hear from you.

We’re one of the UK’s most forward‑thinking law firms, built on a foundation of innovation, collaboration, and ambition. Join us, and let’s shape the future together.

• Role: Information Security Analyst
• Team: IT
• Location: Hybrid working from Bristol, Exeter, Plymouth or Southampton
• Working Pattern: Full time
• Why this role matters: As part of our continued investment in technology and risk, we’re looking for an experienced person to help shape and embed our Information Security Management System (ISMS) as we prepare for ISO 27001 certification.

You’ll be a key contributor to our Cyber & Information Security team, working across the business to ensure our security policies and processes are not only robust, but practical and well understood.

In this role you'll:

• Support the design and implementation of our ISMS aligned to ISO 27001 and NIST CSF
• Create and maintain security documentation including policies, standards and procedures
• Conduct risk assessments and maintain treatment plans and asset registers
• Gather and manage audit evidence for internal and external reviews
• Support policy rollout and adoption across technical and non‑technical teams
• Assist with third‑party assurance and vendor risk activities
• Collaborate with Cyber Defence and 3rd Line Teams to align technical controls
• Contribute to our security awareness and training programme

We’re looking for someone who enjoys structured delivery, takes pride in clear documentation, and thrives in a collaborative environment. You’ll bring:

• A strong understanding of information security principles and frameworks (ISO 27001, NIST CSF, Cyber Essentials Plus)
• Experience supporting ISMS implementation or maintenance
• Excellent documentation and communication skills
• Familiarity with Microsoft 365 Security, Azure AD, and endpoint protection tools
• A methodical approach and attention to detail
• A proactive mindset and commitment to continuous improvement
• Certifications such as CISSP, CISM, or ISO 27001 Lead Implementer are desirable but not essential.

At Foot Anstey, we’re committed to making a difference for our people, our clients, and society. Here’s what makes us stand out:

• An ambitious growth strategy that opens up opportunities for our people to make their mark.
• A client base that spans household names, thriving startups, and ambitious enterprises.
• A culture built on our values of being refreshingly human, entrepreneurial, inclusive and collaborative.
• A strong focus on being a responsible business with a commitment to sustainability and giving back to our communities.
• Comprehensive professional development and training – whatever your role and level we have training that will support you to achieve your goals.

We believe our people are our greatest asset. That’s why we offer a comprehensive benefits package designed to support your professional growth and personal wellbeing, including:

• Competitive salary and performance‑linked bonus.
• Enhanced parental leave policies.
• Private healthcare and wellbeing initiatives (e.g., mental health support, gym memberships).

• Hit the "Apply Now" button.
  • Send us your CV and a quick note on why this role is perfect for you.
  • Our team will review your application and be in touch, whatever the outcome.
• Invited for interview?
  • With a straightforward process typically involving two interviews, our talent acquisition team will guide you through every step, ensuring you feel confident and prepared to show us what you can do.
  • We’re here to support your individual needs. If you require any adaptations or adjustments, we’re more than happy to accommodate these. Before your interview, we’ll contact you to discuss the themes we’ll cover and answer any questions you might have.
  • If you’d like to visit our offices prior to your interview or would like help testing your kit for your virtual interview, just let us know.

We are proud to be an Equal Opportunities Employer. As part of our commitment to diversity and inclusion, we invite applicants to complete optional demographic questions. Any information you choose to share will be anonymised and not linked to your application.

For applicants in Northern Ireland: To meet our obligations under the Fair Employment & Treatment (NI) Order 1998, we monitor community background and sex to promote equality of opportunity. While you’re not required to answer these questions, we encourage you to do so. Your responses will be used anonymously for reporting to the Equality Commission and will not influence any recruitment or employment decisions.

Community Background: In Northern Ireland, individuals are often perceived as belonging to either the Protestant or Roman Catholic communities, regardless of religious practice. If this section is left blank, we may use the residuary method to determine community background based on the personal information in your application.

To find out more about Diversity and Inclusion at our firm – click here