Information Security Analyst

Information Security Analyst

Up to £50,000 + benefits

Hereford | Hybrid

Permanent | Full-time

We are looking for an experienced Information Security Analyst to join our client who will play a key role in driving compliance, governance, and continual improvement across key security frameworks including ISO 27001, PCI DSS, and Cyber Essentials Plus.

Key Responsibilities:

• Lead on the operation and continual improvement of the Information Security Management System (ISMS)
  
  
• Coordinate internal and external audit readiness for ISO 27001, PCI DSS, and Cyber Essentials Plus
  
  
• Draft and update information security policies, procedures, and technical standards
  
  
• Work with procurement and commercial teams to support supplier assurance and risk assessment
  
  
• Contribute to tender responses and bid processes, ensuring security and compliance requirements are met
  
  
• Promote good security practices and raise awareness across departments
  
  
• Act as an escalation point and day-to-day contact for other team members
  
  
• Stay up to date with changes in legislation and standards relating to information and cyber security
  
  Key Skills & Experience:
  
  Essential:
  
  
• Background in IT, Cyber Security, Information Systems, or a related discipline
  
  
• Strong working knowledge of ISO 27001, PCI DSS, and Cyber Essentials Plus
  
  
• Proven ability to support and prepare for audits, including evidence collation and audit readiness
  
  
• Excellent attention to detail and ability to produce high-quality documentation
  
  
• Strong stakeholder communication skills, both written and verbal
  
  
• Ability to build effective working relationships and influence at all levels
  
  
• Comfortable working independently and proactively across teams
  
  Desirable:
  
  
• Experience in supplier risk management and/or tender processes
  
  
• ISO 27001 Lead Auditor/Implementer, PCIP, CISM, CompTIA Security+, or CISMP certification
  
  What you get in return:
  
  
• Up to £50,000 per annum + benefits
  
  
• Hybrid working (3 to 4 days in office)
  
  
• Opportunity to lead and mentor within a growing security team
  
  
• Professional development and training support
  
  This company is an equal opportunity employer and values diversity. We do not discriminate on the basis of race, religion, colour, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.
  
  Interested?
  
  Please submit your CV to Meg Kewley at DCS Recruitment via the link provided.
  
  DCS Recruitment and all associated companies are committed to creating a working environment where diversity is celebrated and everyone is treated fairly, regardless of gender, gender identity, disability, ethnic origin, religion or belief, sexual orientation, marital or transgender status, age, or nationality