Information Security Analyst

Osborne Clarke
Bristol
10 months ago
Applications closed

Related Jobs

View all jobs

Information Security Analyst

Information Security Analyst

Information Security Analyst ( Hybrid / Southampton )

Senior Information Security Analyst ( Hybrid / Leeds )

Regional Security Analyst ( up to 80K plus bonus )

Cyber Security Analyst

Description

Award winning law firm Osborne Clarke are looking for an Information Security Analyst to join their growing Information Security team in in our London or Bristol office. This is a permanent role offering hybrid working.

The role of the Information Security Analyst is committed to maintaining the highest level of data security and protecting our systems from threats. As part of our ongoing efforts to enhance our information security posture, we are seeking a skilled and motivated Information Security Analyst to join our team.

Osborne Clarke

Osborne Clarke is a future-focused international legal practice with over Partners and more than 1, talented lawyers in offices around the world*. Our three-dimensional approach to client service combines legal expertise, in-depth understanding of our clients and the sectors they operate in, together with insight into the global issues that are transforming the landscape of how we live, work and do business: Decarbonisation, Digitalisation and Urban Dynamics. Looking around corners to help our clients solve legal and business challenges, big and small, and harness the opportunities of change - together we'll be ready for what's next.

We love working closely with our clients on new deals, products and solutions which will transform their businesses, markets and even sectors. And our unique approachable culture is not an added extra, it's fundamental to our success.

Job description:

As an Information Security Analyst, you will play a crucial role in safeguarding our organisation's assets from potential threats. You will be responsible for raising awareness with colleagues, assessing risks, implementing controls, and ensuring compliance with industry standards and best practices.

Key responsibilities include:

Developing, maintaining and publishing ISMS documentation (processes, procedures and guidelines), ensuring overall governance and continual improvement of information security controls. Maintaining conformance with ISO , including adaptation of the ISMS to meet evolved structure and requirements of ISO :2, and other applicable standards. Helping expand the scope of ISO certification to include other international entities of the firm, especially with local processes, risks, controls, internal and external audits and management review Stay up to date with the latest trends, technologies, and regulatory requirements. Maintain and share awareness of security industry trends including evaluation of new and emerging security technologies and make recommendations to stakeholders Continuing to enhance the firms security culture through awareness programmes and training Working with departments and systems across the business to conduct security risk assessments and carry out treatment plans. Planning and performing periodic internal audits and compliance activities, supporting internal or external security audit processes, defining and implementing any required remediation activities. Assisting with investigation and triage of any security incidents or issues reported, including use of monitoring activities, scanning/test tools and results to determine potential weaknesses, threat patterns, and trends. Ensuring resolution, root cause analysis and coordination of remediation activities to ensure effective tracking to closure of potential security breaches, attacks or policy violations. Help respond to customer requests for information security compliance, controls and contractual measures. Prepare and present reports on security incidents, risks, and mitigation strategies to management and stakeholders. Carry out supplier due diligence, monitoring and regular review of performance, including supplier audits.

What we're looking for:

The successful candidate will need to have proven experience in a similar role and professional certification in Information Security CISSP, CISMP, Lead ISMS Implementer or Auditor). You'll also need to demonstrate the following:

General

Strong interpersonal and communication skills (spoken, written and presentation) able to work with, influence and educate people at all levels Broad ranging consultancy skills (problem solving, change management, influencing, communication, research and data collection and analysis, process mapping, creative thinking, negotiation) Credible and effective thinker and planner, with good understanding of the firm's goals and objectives Excellent attention to detail in terms of task planning, execution and communication Ability to present ideas in business-friendly and user-friendly language across multiple geographies Highly organised and outcome focussed Proactive in the face of challenges, keen to enjoy work and make an effective contribution Able to effectively prioritise and execute tasks within a fast-paced environment Excellent analytical and problem solving skills. Strong communication and collaboration abilities.

Technical

Trained as an auditor in ISO management systems, ideally ISO but relevant others also considered. Strong knowledge of certifications and standards such as ISO , Cyber Essentials (plus), ISO and/or NIST controls Good awareness of IT security measures, best practices and industry standards. Experience with incident response procedures and tools. Good understanding of cyber security and technology Knowledge of cloud security or services, especially Azure Knowledge of Office Practical and/or theoretical knowledge of security protocols and tools such as ZScaler

Salary and benefits

We offer competitive salaries and generous

Get the latest insights and jobs direct. Sign up for our newsletter.

By subscribing you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Careers

Tips for Staying Inspired: How Cyber Security Pros Fuel Creativity and Innovation

Cyber security professionals face a rapidly changing digital landscape, where new threats emerge almost daily and the stakes—protecting critical data, safeguarding personal privacy, and defending entire infrastructures—could not be higher. It’s easy to be consumed by vulnerability scans, incident response workflows, and endless compliance checks. Yet, thriving in this high-pressure environment demands more than just technical know-how. It also requires creativity and innovation, which enable you to stay one step ahead of potential attackers. So how do cyber security experts remain inspired and agile, even when the challenges can feel relentless? Below, we’ll explore ten actionable strategies to help security analysts, threat hunters, penetration testers, and security engineers maintain fresh perspectives and keep innovating. If you’re looking to sharpen your problem-solving skills and rediscover the spark that drew you to cyber security in the first place, these tips can guide you toward a more fulfilling and impactful career.

Careers

Top 10 Cyber Security Career Myths Debunked: Key Facts for Aspiring Professionals

In a hyper-connected world, cyber security is no longer an afterthought—it’s a core component of modern business, government, and everyday life. From stopping ransomware attacks to safeguarding personal data, cyber security professionals shoulder a vital responsibility: keeping digital systems, networks, and data safe. Unsurprisingly, the demand for skilled cyber security talent continues to surge, offering robust and often lucrative career paths. Yet, despite the industry’s prominence, myths and misconceptions about cyber security careers abound. Is it really just about hacking? Do you need to be a superhuman coder with years of experience? Or is cyber security just a niche field, reserved for tech giants? At CyberSecurityJobs.tech, we see firsthand how these myths deter capable individuals from entering or advancing in one of the most dynamic fields in tech. This article aims to bust the top 10 cyber security career myths—providing clear, evidence-based insights into what it really takes to thrive in this ever-evolving domain. Whether you’re a recent graduate exploring the field, a mid-career professional seeking a pivot, or simply curious about the prospects, read on to discover the true breadth and promise of cyber security careers.

Careers

Global vs. Local: Comparing the UK Cyber Security Job Market to International Landscapes

Understanding opportunities, salaries, and work culture in cyber security across the UK, the US, Europe, and Asia Cyber security has rapidly ascended from a back-office concern to a strategic priority for every industry. As data breaches, ransomware, and nation-state attacks increase in frequency and sophistication, organisations worldwide are racing to fortify their digital defences. This ongoing surge in cyber threats fuels an unprecedented demand for skilled security professionals—ranging from penetration testers and threat intelligence analysts to cloud security architects and CISOs. In this article, we’ll explore how the UK cyber security job market compares to major international hubs in the United States, Europe, and Asia. We’ll discuss job opportunities, salary bands, work culture, and provide guidance for those who might be contemplating remote or overseas positions. By understanding the nuances of each region’s cyber security ecosystem, you can make a more informed decision about where and how to advance your career in this high-impact, fast-evolving sector. Whether you’re a seasoned expert with years of experience or a career-changer eager to break into cyber security, this overview will help you navigate the global landscape. By the end, you’ll have a clearer perspective on each region’s advantages and challenges—along with practical insights for seizing the best opportunities in a field that has become mission-critical for every modern organisation.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.