Information Security Analyst

Southampton
1 month ago
Applications closed

Related Jobs

View all jobs

Information Security Analyst - Law Firm

IT Information Security Analyst - Compliance

Junior Information Security Analysist

IT Operations and Security Analyst (6 month FTC)

Trainee Cyber Security Analyst - Training Course

IT Operations and Security Analyst - 6 month FTC

Information Security Analyst - GRC Focused

Permanent - £50k-£55k + strong benefits

Location: Hybrid - Southampton area

Your new company

I am looking to recruit a skilled Information Security Analyst to join a global leader in the shipping space, based in the heart of Southampton. You'll be joining a growing team within the CNI space. The role will be hybrid, likely to be 2-3 days in office a week, in Southampton, so you will need to be based within a commutable distance.

Your new role

This is an Information Security Analyst role that focusses more on the GRC and policies/procedures rather than being a SOC/Technical Security Analyst role. The client is looking for someone who is experienced with ISO27001 and NIST. It is likely that the role will grow and develop in the future, depending on organisational growth. In the clients' words, key elements of the role include:

Support the implementation, monitoring, and continuous improvement of information security frameworks (e.g., NIST CSF, NIS Regulations, ISO/IEC 27001).
Maintain and improve procedures, technologies and methods used to protect digital files and computer systems against unauthorised access, modification or destruction.
Coordinate and provide evidence for internal and external audits, certifications, and regulatory inspections.
Conduct compliance risk assessments and gap analyses, identifying areas for improvement and recommending corrective actions.
Track and report compliance status across systems and business units, highlighting risks and remediation progress.What you'll need to succeed

GRC skills and strong communication skills
Strong understanding of risks associated with bad security processes.
Experience implementing ISO27001 and NIST. CE+ would be advantageous.
A solid understanding of the cyber security risks associated with various technologies and how to apply appropriate controls to mitigate these.
Experience in risk assessment and management in the context of information security.
CompTIA Security+ and ISO27001 certificates would be advantageous. What you'll get in return

As well as a salary of up to £55000, there is also a company bonus scheme, 26 holiday days + bank holidays, plus they will match your pension contribution, plus 2%, up to a 10% company contribution. There are other benefits also.

What you need to do now

If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now.
If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion about your career.

Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Jobs Careers

Cyber Security Jobs for Career Switchers in Their 30s, 40s & 50s (UK Reality Check)

If you’re thinking about switching into cyber security in your 30s, 40s or 50s, you’re in good company. Across the UK, organisations of all sizes are hiring people from diverse backgrounds to protect systems, data & customers. But with hype around “hackers” & quick-win courses, it’s hard to separate reality from fiction. This guide gives you a UK reality check: which roles genuinely exist, what employers actually want, how training really works, what to expect on salary & progression & whether age matters. Whether you come from finance, project management, operations, law, HR or customer service, there is a credible route into cyber security if you approach it strategically.

Jobs

How to Write a Cyber Security Job Ad That Attracts the Right People

Cyber security is now a board-level priority for organisations across the UK. From financial services and healthcare to critical infrastructure, SaaS platforms and the public sector, demand for skilled cyber security professionals continues to grow. Yet despite this demand, many employers struggle to attract the right candidates. Cyber security job adverts often generate large volumes of applications, but few are a genuine match. Meanwhile, experienced security engineers, analysts and architects quietly ignore adverts that feel vague, unrealistic or disconnected from real security work. In most cases, the problem is not a lack of talent — it is the quality of the job advert. Cyber security professionals are trained to assess risk, spot weaknesses and question assumptions. A poorly written job ad signals organisational immaturity and weak security culture. A well-written one signals seriousness, competence and trust. This guide explains how to write a cyber security job ad that attracts the right people, improves applicant quality and positions your organisation as a credible security employer.

Education Jobs

Maths for Cyber Security Jobs: The Only Topics You Actually Need (& How to Learn Them)

If you are applying for cyber security jobs in the UK it can feel like “real security people” must be brilliant at maths. The reality is simpler: most roles do not need degree-level pure maths. What they do need is confidence with a small set of practical topics that show up repeatedly in day-to-day work across SOC, incident response, cloud security, AppSec, threat detection, IAM & security engineering. This guide strips the maths down to what actually helps you get hired. It includes a 6-week learning plan plus portfolio projects you can publish to prove the skills. You will focus on: Number systems & bitwise thinking (binary, hex, bytes, XOR) Modular arithmetic basics (enough to understand how modern crypto “works”) Probability & statistics for detection, triage & risk Discrete maths for logic, sets, graphs & complexity Security maths habits: estimation, false positive control & evidence-led reporting You will not waste time on heavy theory that rarely appears in junior or mid-level cyber security roles.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.