Information Security Analyst

Ref: 382| Posted: 11th Sep 2019

This vacancy is now closed


Durham Professional Services is looking to recruit an Information Security Analyst to be based with our client on the outskirts of Edinburgh. This international client is looking for a skilled ISO to join their team, working on challenging and fast paced projects.

The role of the Information Security Analyst is to identify information security risks across our client’s entire organisation and clients (including products, systems, metadata, people and processes), assess these risks and partner with operational teams to ensure that effective controls are in place to manage them.

Working closely with colleagues in the Compliance Office, the post-holder will be a member of the team, and plays a major role in delivering the strategic mission of promoting the highest ethical and governance standards across the organisation and the clients they deal with.

The Job

On a day to day basis, you’ll be involved in the following:

  • Working collaboratively with colleagues across the company, provide expert advice across operations on matters relating to information security, ensuring consistent interpretation of the client’s information security policy requirements and alignment with the over-arching enterprise risk management framework. 
  • Support operational business areas and projects as necessary in undertaking 3rd party information security due diligence and supplier assessments.
  • Design, implement, review and monitor an annual information security plan, including regular review of the information security governance framework that encompasses the necessary roles, processes, management information and technology in support of the information security risk management needs of the client.
  • Monitor and report on information security compliance to internal and external stakeholders as necessary, including supporting the client project managers with information security reporting requirements to the client’s Audit Committee
  • Develop, implement and maintain mechanisms to deliver appropriate levels of awareness regarding information security and promote and instill an information security culture that is consistent with and aligned to the organisation’s wider enterprise risk appetite and data privacy maturity program


The Person

Ideally, we’re looking for someone who has:

  • A good degree from a leading university in a technical subject, software engineering preferred
  • 3+ years of experience in an information security SME role
  • Proven experience of working within a professional, fast moving and challenging environment
  • Ability to balance multiple demands and priorities whilst working on time and to budget
  • Experience of working across mixed stakeholder groups and business levels
  • Excellent interpersonal skills with the ability to build strong relationships at all levels both internally and externally
  • Highly motivated, proactive and enthusiastic individual who is able to work on their own initiative and able to meet strict deadlines
  • Communicates effectively with other people without requiring direct supervision and provides technical guidance when required, speaking in a clear, concise and compelling manner
  • Receptive to working in a changing environment and with a flexible attitude to work.


My client offers a great benefits package, including performance related bonus and excellent health packages.

This client thrives on a great work/life balance and a career enhancing environment.

“We are committed to equality of opportunity for all staff and applications from individuals are encouraged regardless of age, disability, sex, gender reassignment, sexual orientation, pregnancy and maternity, race, religion or belief and marriage and civil partnerships."