Be at the heart of actionFly remote-controlled drones into enemy territory to gather vital information.

Apply Now

Information Security Assurance Analyst

Reigate
4 weeks ago
Create job alert

Information Security Assurance Analyst

Overview:

Our client is looking for an Information Security Assurance Analyst Operations. The aim of this role is the effective operation, reporting and evidencing of their technology and information security control environment and the overall Information Security Management System (ISMS).

  • Based in Reigate/hybrid - 2 days in the office 3 from home

  • £40,000 - £45,000

  • Hybrid

  • Eligibility for annual bonus, up to 15%

  • 25 days holiday per annum, plus bank holidays

  • Company pension scheme

  • Death in service benefit

  • Employee Assistance Programme

    Job specification:

    Maintaining and improving our ISMS –

    Updating ISMS policies, procedures, standards, and guidance –

    Coordinate and provide necessary support in planning and completing internal ISMS reviews.

    Supplier onboarding and annual supplier security assessments –

    Maintaining and developing our security awareness and education programmes –

    Analysis of information security alerts and incidents –

    Report on incidents, risks, threats and vulnerabilities –

    Scheduling internal and external penetration and vulnerability tests and managing remediation planning

    Assist in evaluation of cyber security tools

    Manage online ISMS system.

    Assist the ISM to deliver Information Security projects

    Participate in technology and information security related audits, providing support regarding the collation and supply of evidence to requests.

    Ensuring information security controls are evaluated and effective - Identifying ISMS nonconformities - Respond to audit recommendations.

    Establish a good working relationship with all internal and external key stakeholders, and third-party vendors.

    Create reports on information security projects and activities –

    Report on information and cyber security incidents –

    Create ISMS reports based on key metrics - Articulate associated risks in both technical and non-technical terminology.

    Support the on-going review process to continually improve and refine the ISMS

    Support the ISM in performing targeted information security risk assessments.

    Identify risks, incidents, and breaches, in accordance with company policies and department procedures.

    Person specification:

    Appropriate level of education or professional risk/compliance/Information Security related qualifications

    Experience within technology risk management and/or audit function would be beneficial

    Experience of working in a regulated environment / awareness of requirements such as GDPR

    Experience in the maintenance of a certified IS(phone number removed) Information Security Management System and related controls (ISO27002)

    Understanding of technology and information security risk management frameworks

    Excellent verbal and communication skills

    Excellent team player who can establish strong working relationships

    Graduates can be considered if they have a relevant degree

    Refer a friend and earn £100! If you have a friend who is also searching for a new opportunity in the local area, recommend Optima and if we place them (providing they complete their 3-month probation period), you will receive a £100 retail voucher of your choice!

    Please note that if you have not been contacted within 5 working days, then unfortunately on this occasion your CV has not been shortlisted.

    By applying for this vacancy, you accept Optima Recruitment Limited’s Privacy and GDPR Policy which can be found on our website and therefore gives us consent to contact you.

    Optima Recruitment Limited are acting as a recruitment agency in relation to this vacancy and are an equal opportunities employer

Related Jobs

View all jobs

Information Security Analyst

Lead / Senior Information Security Analyst

Penetration Tester

SOC Shift Leader

Senior Business Analyst, Threat Intelligence Analyst

SOC Shift Leader – Stevenage

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Jobs

Cyber Security Recruitment Trends 2025 (UK): What Job Seekers Must Know About Today’s Hiring Process

Summary: UK cyber security hiring has shifted from title‑led CV screens to capability‑driven assessments that emphasise incident readiness, cloud & identity security, detection engineering, governance/risk/compliance (GRC), measurable MTTR/coverage gains & secure‑by‑default engineering. This guide explains what’s changed, what to expect in interviews, & how to prepare—especially for SOC analysts, detection engineers, blue/purple teamers, penetration testers, cloud security engineers, DFIR, AppSec, GRC & security architecture. Who this is for: SOC & detection engineers, security operations leads, DFIR analysts, penetration testers/red teamers, purple teamers, AppSec/DevSecOps engineers, security architects, cloud security engineers, identity/IAM engineers, vulnerability managers, GRC/compliance specialists, product security & security programme managers targeting roles in the UK.

Jobs

Why Cyber Security Careers in the UK Are Becoming More Multidisciplinary

Cyber security used to be viewed primarily as a technical discipline: firewalls, encryption, intrusion detection, penetration testing. In the UK today, it’s far broader. Organisations now face complex legal frameworks, ethical dilemmas, human-behaviour risks, communication challenges & usability hurdles. This shift means cyber security careers are becoming more multidisciplinary. From protecting NHS patient records to defending financial services, securing supply chains & safeguarding national infrastructure, cyber security now touches every sector. Employers increasingly want professionals who understand law, ethics, psychology, linguistics & design alongside traditional technical skills. In this article, we’ll explore why UK cyber security careers are expanding in this way, how these five disciplines shape the profession, and what job-seekers & employers need to know to thrive in this new landscape.

Jobs

Cyber Security Team Structures Explained: Who Does What in a Modern Cyber Security Department

Cyber security has become a top priority for UK organisations of all sizes. From small businesses to financial institutions, healthcare providers, and government bodies, the risk of cyber attack is now a constant concern. Threats are more sophisticated, regulations more demanding, and customers more aware of data privacy than ever before. But defending against cyber threats isn’t simply about having the right tools — it’s about having the right team. A modern cyber security department relies on clearly defined roles and responsibilities to ensure that defences are proactive, incidents are managed swiftly, and compliance is maintained. This article explains the structure of a modern cyber security team, the roles you’ll typically find within it, how they collaborate, and what skills, qualifications, and salaries are expected in the UK job market.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.