Information Security Analyst

Northampton

10 months ago

Applications closed

Related Jobs

View all jobs

Information Security Analyst (Hybrid / Hatfield)

Information Security Analyst - GRC

Information Security Assurance Analyst

Cyber Security Analyst

GRC Analyst - Cyber Security

Head of Security

Howdens are on the search for Information Security Analysts to join our Security team in Northampton.
Leading Cyber Security and Data Protection training and awareness programmes you will support compliance with GDPR and internal policies and work with IS teams to ensure alignment with best practices in technical designs. Key responsibilities include managing PCI DSS certification for all relevant payment gateways, leading incident investigations, conducting risk and vulnerability assessments, and testing internal cyber controls with evidence reporting to stakeholders

This is a permanent position based at our office in Brackmills Business Park, Northamptonshire. Working onsite 4 days per week with 1 day from home.

What will I be doing as Information Security Analyst?

Assist in establishing and monitoring the corporate information security policy, standards, procedures, guidelines, internal controls and business continuity to ensure Howdens Business Information is protected, in alignment to Cyber Security best practice and data protection regulation.
Provide technical project support representing information security
Lead with incident management investigations and conduct risk and vulnerability assessments where appropriate
Play an active role in incident management activities.
Support the PMO (Project Management Office) to ensure appropriate security is assessed within projects alongside overseeing supplier compliance to Howdens needs for Cyber Security
Conduct risk and vulnerability assessments to identify and mitigate security risks
Engage with IT projects to perform Security Reviews and ensure findings are appropriately communicated and added to the appropriate logs to be managed
Engage with external organisations working with Howdens to ensure the Confidentiality, Integrity and Availability of Howdens information is maintained

What we need from you
Either Technical Operations Security experience with an interest to work within a governance role or experience working in a Security Governance role
Ability to assess system controls based on a documented standard
Will be able to demonstrate ability in problem analysis and resolution
Strong communication skills to be able to influence best practice at all levels of the organisation, with the ability to explain technical problems to non-technical business stakeholders at all levels
Ability to build effective relationships to influence and negotiate business outcomes
Experience of working with and presenting findings to Senior Stakeholders
Skilled in presentation and training techniques in matters of IT security is advantageous
Ideally you will hold or be working towards a recognised Cyber Security qualification (CISA, CISMP, ISO27001 lead implementor or equivalent).
Ability to work onsite in Northampton a minimum of 4 days per week.

What we can offer you:
Competitive salary and annual company bonus
Excellent pension scheme (company contribution of up to 12%)
25 days holiday + bank holidays with the option to buy additional days
Staff Discount
Employee Assistance Programme
Exceptional Reward and Recognition events

About Howdens:
Howdens Joinery is the UK’s number one trade kitchen supplier providing thousands of products across kitchens, joinery, and hardware. We have over 900 depots throughout the UK and Europe – making us the first choice for more than 460,000 loyal trade professionals. Last year our sales reached circa 2.3bn, and we have an ambitious growth agenda.
As well as the opportunity to develop within a fast paced and commercial environment, you will be part of a rewarding organisation recognised for excellence in the workplace in the Best Big Companies to Work For.

How to apply
We’re building a future where world-class service, innovation, and sustainability are embedded within our DNA. If Howdens sounds like the kind of place where you can build and develop your career, then we’re keen to hear from you.

Howdens is founded on the principle of being Worthwhile for ALL concerned. We’re working hard to ensure we provide an inclusive environment where everyone feels welcome. We will do everything we can to support you during your application. If you need us to make any adjustments to our recruitment process, please email (url removed) with the job title and location, and we will be happy to help you

#LI-HG1

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Feb 9, 2026

Careers

How Many Cyber Security Tools Do You Need to Know to Get a Cyber Security Job?

If you are trying to build or move forward in a cyber security career, it can feel like the list of tools you are expected to know never ends. One job advert asks for SIEM platforms, another mentions penetration testing tools, another lists cloud security, threat intelligence platforms, endpoint detection, scripting languages and compliance frameworks. Scroll LinkedIn and it gets worse. Everyone seems to “know” dozens of tools, certifications and platforms. Here is the reality most cyber security hiring managers agree on: they are not hiring you because you know every tool. They are hiring you because you understand risk, can think like an attacker and a defender, follow process, communicate clearly and make good decisions under pressure. Tools matter — but only when they support those outcomes. So how many cyber security tools do you actually need to know to get a job? For most job seekers, the answer is far fewer than you think. This article explains what employers really expect, which tools are essential, which are role-specific and how to focus your learning so you look credible, not overwhelmed.

Feb 3, 2026

Jobs

What Hiring Managers Look for First in Cyber Security Job Applications (UK Guide)

If you want to stand out in the highly competitive world of cyber security job applications, you need to understand what hiring managers look for before they even finish reading a CV. Cyber security hiring managers scan applications quickly and with specific priorities in mind. They assess not just your technical ability, but your judgement, professionalism, clarity, risk awareness and evidence of impact. This guide explains what hiring managers look for first in cyber security applications across roles like Security Analyst, Security Engineer, Penetration Tester, Incident Responder, Security Architect, Governance Risk and Compliance specialists and Cloud Security positions. Use this as a practical, step-by-step checklist to sharpen your CV, LinkedIn profile, cover letter and portfolio before you apply on www.cybersecurityjobs.tech .

Jan 23, 2026

Education

The Skills Gap in Cyber Security Jobs: What Universities Aren’t Teaching

Cyber security has become one of the most critical disciplines in the modern economy. From protecting financial systems and healthcare data to securing national infrastructure, cloud platforms and supply chains, cyber security professionals now sit at the frontline of digital trust. Demand for cyber security talent in the UK has surged. Job vacancies remain high, salaries continue to rise, and organisations across every sector report difficulty hiring skilled professionals. Yet despite this demand, many graduates struggle to break into cyber security roles and employers consistently report that candidates are not job-ready. The problem is not intelligence, ambition or academic effort. It is a persistent and widening skills gap between university education and real-world cyber security work. This article explores that gap in depth: what universities teach well, what they routinely miss, why the gap exists, what employers actually want, and how jobseekers can bridge the divide to build sustainable careers in cyber security.