Banner Default Image

Information Security Analyst

Back to job search

Information Security Analyst

  • Location:


  • Job type:


  • Salary:

    £50,000 +

  • Contact:

    Jessica Bhard

  • Contact email:

  • Contact phone:

    0203 854 2230

  • Published:

    etwa 1 Monat her

  • Expiry date:


Role: Information Security Analyst

Location: Bristol

Salary: £50,000+

Our client is a leading financial technology firm based in Bristol who is seeking a talented and ambitious Information Security Analyst to join an established team in Bristol. We are looking for a skilled and proactive analyst to enhance our client's Information Security capabilities. If you are looking for a role where you are exposed to all aspects of Information Security, this could be for you.

Key Responsibilities:

  • Developing, maintaining, and publishing ISMS documentation (processes, procedures, and guidelines), ensuring overall governance and continuous improvement of information security controls.

  • Ensuring compliance with ISO 27001, including adapting the ISMS to meet the updated structure and requirements of ISO 27002:2022 and other relevant standards.

  • Assisting in expanding the scope of ISO 27001 certification to include other international entities of the organisation, particularly focusing on local processes, risks, controls, internal and external audits, and management reviews.

  • Maintaining and sharing knowledge of security industry trends, evaluating new and emerging security technologies, and making recommendations to stakeholders.

  • Continuously enhancing the firm's security culture through awareness programs and training.

  • Collaborating with various departments and systems across the business to conduct security risk assessments.

  • Assisting in the investigation and triage of reported security incidents or issues, using monitoring activities, scanning/testing tools, and results to identify potential weaknesses, threat patterns, and trends.

  • Preparing and presenting reports on security incidents, risks, and mitigation strategies to management and stakeholders.

  • Conducting supplier due diligence, monitoring, and regular performance reviews.

About you:

  • Strong knowledge of certifications and standards such as ISO 27001, Cyber Essentials (plus), ISO 22301 and/or NIST controls

  • Excellent awareness of IT security measures, best practices and industry standards.

  • Experience with incident response procedures and tools.

  • Good understanding of cyber security and technology.

  • Knowledge of cloud security or services, especially Azure.

Keen to hear from pro- active & passionate candidates who are ready to upskill and get stuck in!


Locke & McCloud are the UK’s leading cyber security & information security staffing company – through having a sole focus on the cyber & information security space we have been able to foster solid relationships with some of the UK’s most exciting cyber security consultancies & end users. Our focus on the information security space allows us to be able to help you find the most exciting opportunities in the cyber security market. If you are on the lookout for your next cyber security or information security role, please get in touch!