Job Description
🔐 Information Security Analyst
Hybrid (Cheltenham, 3 Days Onsite + Flexible Working) | £55,729–£65,729 + Strong UK Benefits | Strategic Cyber Investment
Be part of a forward-thinking law firm undergoing a major cyber transformation. As an Information Security Analyst, you’ll support governance, lead audits, and build security resilience across multiple jurisdictions.
What You’ll Be Doing
* Maintain and improve the ISMS, including policies, procedures, and guidelines
* Ensure ongoing ISO 27001:2022 alignment across UK and international offices
* Conduct internal audits, lead remediation efforts, and support third-party reviews
* Run supplier due diligence and respond to client risk assessments
* Investigate and escalate incidents, contributing to ongoing threat awareness
* Deliver awareness training and drive adoption of secure behaviours
* What You’ll Bring
o Experience in information security or compliance-based roles
o Knowledge of ISO 27001, Cyber Essentials, NIST or similar frameworks
o Ability to communicate and collaborate across business functions
o Comfortable working in cloud and Microsoft 365 environments
o Certifications like CISMP, CISSP or ISO 27001 Lead Auditor are a bonus