Enable job alerts via email!
Information Security Compliance Analyst
Hewett Recruitment
Worcester
Hybrid
GBP 50,000 - 70,000
Full time
Job summary
A leading recruitment agency is seeking an Information Security Compliance Analyst to enhance a global compliance program. This hybrid role involves designing compliance frameworks, conducting audits, and ensuring adherence to data protection regulations. Ideal candidates will have relevant experience and education in information security, and professional certifications are an asset. The position offers competitive salary and a collaborative work environment.
Benefits
Qualifications
- 3+ years' experience in information security compliance or IT risk management.
- Strong knowledge of data protection laws (GDPR, CCPA).
- Professional certifications such as CISA, CISSP are advantageous.
Responsibilities
- Support design and implementation of information security compliance framework.
- Conduct internal audits and evaluate security controls.
- Monitor adherence to global data protection regulations.
Skills
Education
Tools
Location: Worcester (hybrid 3 days in)
This role does not offer sponsorship so you need full right to work within the UK.
We are seeking an Information Security Compliance Analyst to support the execution and enhancement of a global information security compliance programme. This role ensures that operations across multiple business units adhere to internal policies, international regulations, and recognised industry frameworks. It offers the opportunity to work cross-functionally with stakeholders worldwide and contribute to maintaining a strong security and compliance culture.
Support the design, implementation, and continuous improvement of the information security compliance framework (e.g. ISO 27001, NIST, SOC 2, CMMC, HITRUST).
Conduct and coordinate internal audits, evaluate security controls, and document findings with recommended actions.
Track remediation activities for audit findings and compliance gaps in collaboration with IT and business stakeholders.
Monitor and support adherence to global data protection and privacy regulations such as GDPR, CCPA, and LGPD.
Assist in maintaining security policies, standards, and procedures, ensuring audit readiness and compliance reporting.
Contribute to third-party risk management reviews and due diligence activities.
Collaborate with global teams to drive best practice and support security awareness initiatives.
Bachelor's degree in Information Security, Risk Management, Computer Science, or related field.
3+ years' experience in information security compliance, auditing, or IT risk management.
Strong knowledge of security frameworks (ISO 27001, NIST, SOC 2, COBIT) and data protection laws (GDPR, CCPA, etc).
Experience conducting security audits and assessments with strong analytical and organisational skills.
Ability to communicate effectively with technical and non-technical stakeholders across multiple regions.
Professional certifications such as CISA, CISSP, ISO 27001 Lead Auditor, or CRISC are advantageous.
Competitive salary and benefits package.
Opportunity to work in a global environment with exposure to diverse regulatory landscapes.
Involvement in high-impact security and compliance initiatives.
Support for professional development, including security training and certifications.
Flexible and collaborative working environment with scope to make a meaningful impact.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
Follow us
