Information Security - Governance, Risk & Compliance Analyst

Kurt Geiger is an inclusive, creative footwear and accessories brand powered by kindness. We want to empower our talent to be confident and true to themselves, the London way. London is our home, our heartbeat, and we draw inspiration from the energy and spirit of the city; its diversity and creativity. For over fifty years our team of in-house shoe and accessory designers have been creating authentic, distinctive designs from our London headquarters. The rainbow is our signature. It represents the good energy and love we have for our community and the many ways we collectively express our individual style.

We are looking for a detail-oriented and dependable GRC Analyst to join our Technology and Information Security team. This role is ideal for someone with a strong work ethic, experience in information security, and a collaborative mindset. You will help protect our digital assets, ensure compliance with regulatory standards, and promote a security-first culture across the organisation.

• Coordinate and support security incident response activities
• Support in investigating security incidents and data breaches
• Assist with security audits and risk assessments across cloud and on-prem environments
• Help develop and maintain security policies and standards (ISO 27001, NIST, GDPR)
• Support data protection efforts and GDPR compliance
• Support access controls and identity management (Microsoft Entra ID, AWS IAM)
• Collaborate with teams across DevOps, IT, and digital marketing to embed security practices
• Conduct third-party risk assessments and vendor reviews
• Participate in change advisory boards to assess risks
• Prepare documentation for audits and compliance reviews
• Promote security awareness and provide guidance to teams

• Previous experience in Information Security or a similar role
• Experience in incident response, audits, and data privacy
• Familiarity with cybersecurity frameworks (ISO 27001, SOC 2, NIST)
• Familiarity with SIEM/EDR tools (e.g., CrowdStrike, Microsoft Defender)
• Knowledge of cloud platforms (Azure, AWS) and security tools
• Understanding of VPNs, firewalls, and Zero Trust principles
• Strong communication and collaboration skills
• Self-motivated and detail oriented

• Certifications such as ISO 27001, Security+ or similar
• Experience with risk registers and mitigation planning
• Familiarity with GDPR breach protocols and privacy impact assessments

• A collaborative and supportive work environment
• Opportunities for professional development and certifications
• A chance to make a meaningful impact in a security-conscious organisation

• Competitive basic salary
• Pension and life assurance
• Enviable discounts
• Gym Discounts
• Summer Hours - 3pm Friday finish
• Half Day, Pay Day Friday (once per month)
• RetailTrust support
• And so much more!

We\'re an energetic fast-paced brand that embraces progress and strives for innovation. Hard work is rewarded with new opportunities at every level and kindness is celebrated in everything we do. Our summer working hours accommodate a healthy work life balance. Wellbeing is important to our working culture, which is why we nurture a friendly environment for talent to thrive in, alongside a vibrant social community.

The first Kurt Geiger store opened on London Bond Street in 1963. Today, our brand has global appeal and is distributed in hundreds of cities around the world. We operate over 70 stand-alone stores nationwide, including our new flagship store on London Oxford Street, and in over 400 stores globally. Beyond stand-alone stores and retail pop ups, our retail partners include some of the world\'s most famous department stores.

We Are One: For Love | For Diversity | For Change | For Equality | For Kindness | For Freedom | For Unity Against Racism