Information Security Analyst
Department: Legal & Compliance
Employment Type: Full Time
Location: Zinc - London
Reporting To: Hamraj Gulamali
Compensation: £50,000 / year
Description
We’re looking for an Information Security & Compliance Specialist to take charge of our information security management systems (ISMS), data handling, and compliance processes as we scale. You’ll bridge the gap between our brilliant engineers and key stakeholders, auditors, clients, and beyond, making complex security and compliance processes simple, clear, and effective. From owning certifications like ISO 27001 to tackling cybersecurity risks, this role is all about leadership, ownership, and communication in a fast-paced, high-growth environment!
Key Responsibilities
* Own our ISMS and QMS: Keep them up-to-date, effective, and easy for everyone to understand.
* Lead certifications: Manage ISO 27001, Cyber Essentials Plus, UK Trust Framework, and prep for SOC 2, GDPR, and ISO 9001.
* Simplify security: Translate complex tech from engineers into clear updates for clients, auditors, and teammates.
* Audit master: Perform internal audits of ISMS, QMS, and data handling policies.
* Cyber watchdog: Monitor and respond to cybersecurity risks, keeping our systems secure.
* Tech manager: Oversee endpoint devices, IT software, and our cloud-based systems (like AWS).
This role is all about details, problem-solving, and keeping security simple and approachable!
Skills, Knowledge and Expertise
* ISMS/QMS Expertise: You’ve built or maintained information and quality management systems before, ensuring everything is organised and audit-ready. We need someone who knows how to run the show!
* Audit Experience: Whether internal or external, audits are your jam. You’ll be diving deep to keep our compliance spotless and our stakeholders happy.
* Compliance Knowledge: GDPR, ISO 27001, SOC 2, Cyber Essentials, know at least one, be eager to learn the rest. These certifications keep us trustworthy and ahead of the curve.
* Tech Awareness: With no “on-prem” facilities, our systems run on AWS (and maybe Azure). A solid understanding of cloud infrastructure helps you collaborate with our engineers seamlessly.
* Empathetic Communication: Security can be confusing; your job is to make it accessible and relatable for everyone, from teammates to clients.
* Ownership Mindset: This isn’t a “wait and see” role. You’ll need to step up, take charge, and make things happen from day one.
* Stakeholder Management: You’ll be working with people from different backgrounds, clients, auditors, engineers, and need to handle their expectations with finesse.
* Problem-Solving Under Pressure: Time is tight, mistakes can be costly, and the pace is fast. You’ll thrive by staying calm and finding creative solutions to keep us on track.
What we offer
Zinc offers a chance to work on a product that brings a fresh perspective on data ownership in hiring.
* 24 days holiday + Bank Holidays + your birthday off
* £1200 annual benefits allowance (ThanksBen, from month 2)
* Early finish Fridays (16:00)
* Yearly company retreat to Serbia
* Enhanced Maternity, Paternity, and Adoption Leave (2 months full pay, then statutory)
* Statutory pension with NEST (3% employer, 5% employee)
* Zinc shares, issued through the EMI Scheme
* Unlimited access to MoreHappi coaching
* Company socials, quarterly team socials, Free Monday lunches
* Nursery workplace benefit scheme (Yellownest)
* Option to lease an electric car through Electric Car Scheme
* Celebrated Zinc anniversaries
#J-18808-Ljbffr