Be at the heart of actionFly remote-controlled drones into enemy territory to gather vital information.

Apply Now

Information Security Assurance Analyst

Reigate
1 week ago
Create job alert

Information Security Assurance Analyst

Overview:

Our client is looking for an Information Security Assurance Analyst Operations. The aim of this role is the effective operation, reporting and evidencing of their technology and information security control environment and the overall Information Security Management System (ISMS).

  • Based in Reigate/hybrid - 2 days in the office 3 from home

  • £40,000 - £45,000

  • Hybrid

  • Eligibility for annual bonus, up to 15%

  • 25 days holiday per annum, plus bank holidays

  • Company pension scheme

  • Death in service benefit

  • Employee Assistance Programme

    Job specification:

    Maintaining and improving our ISMS –

    Updating ISMS policies, procedures, standards, and guidance –

    Coordinate and provide necessary support in planning and completing internal ISMS reviews.

    Supplier onboarding and annual supplier security assessments –

    Maintaining and developing our security awareness and education programmes –

    Analysis of information security alerts and incidents –

    Report on incidents, risks, threats and vulnerabilities –

    Scheduling internal and external penetration and vulnerability tests and managing remediation planning

    Assist in evaluation of cyber security tools

    Manage online ISMS system.

    Assist the ISM to deliver Information Security projects

    Participate in technology and information security related audits, providing support regarding the collation and supply of evidence to requests.

    Ensuring information security controls are evaluated and effective - Identifying ISMS nonconformities - Respond to audit recommendations.

    Establish a good working relationship with all internal and external key stakeholders, and third-party vendors.

    Create reports on information security projects and activities –

    Report on information and cyber security incidents –

    Create ISMS reports based on key metrics - Articulate associated risks in both technical and non-technical terminology.

    Support the on-going review process to continually improve and refine the ISMS

    Support the ISM in performing targeted information security risk assessments.

    Identify risks, incidents, and breaches, in accordance with company policies and department procedures.

    Person specification:

    Appropriate level of education or professional risk/compliance/Information Security related qualifications

    Experience within technology risk management and/or audit function would be beneficial

    Experience of working in a regulated environment / awareness of requirements such as GDPR

    Experience in the maintenance of a certified IS(phone number removed) Information Security Management System and related controls (ISO27002)

    Understanding of technology and information security risk management frameworks

    Excellent verbal and communication skills

    Excellent team player who can establish strong working relationships

    Graduates can be considered if they have a relevant degree

    Refer a friend and earn £100! If you have a friend who is also searching for a new opportunity in the local area, recommend Optima and if we place them (providing they complete their 3-month probation period), you will receive a £100 retail voucher of your choice!

    Please note that if you have not been contacted within 5 working days, then unfortunately on this occasion your CV has not been shortlisted.

    By applying for this vacancy, you accept Optima Recruitment Limited’s Privacy and GDPR Policy which can be found on our website and therefore gives us consent to contact you.

    Optima Recruitment Limited are acting as a recruitment agency in relation to this vacancy and are an equal opportunities employer

Related Jobs

View all jobs

Security Assurance Analyst

IT Security Analyst

IT Security Analyst

Security Assurance Specialist

Information Security Analyst (Hybrid / Hatfield)

Technical Operations Analyst

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Why Cyber Security Careers in the UK Are Becoming More Multidisciplinary

Cyber security used to be viewed primarily as a technical discipline: firewalls, encryption, intrusion detection, penetration testing. In the UK today, it’s far broader. Organisations now face complex legal frameworks, ethical dilemmas, human-behaviour risks, communication challenges & usability hurdles. This shift means cyber security careers are becoming more multidisciplinary. From protecting NHS patient records to defending financial services, securing supply chains & safeguarding national infrastructure, cyber security now touches every sector. Employers increasingly want professionals who understand law, ethics, psychology, linguistics & design alongside traditional technical skills. In this article, we’ll explore why UK cyber security careers are expanding in this way, how these five disciplines shape the profession, and what job-seekers & employers need to know to thrive in this new landscape.

Cyber Security Team Structures Explained: Who Does What in a Modern Cyber Security Department

Cyber security has become a top priority for UK organisations of all sizes. From small businesses to financial institutions, healthcare providers, and government bodies, the risk of cyber attack is now a constant concern. Threats are more sophisticated, regulations more demanding, and customers more aware of data privacy than ever before. But defending against cyber threats isn’t simply about having the right tools — it’s about having the right team. A modern cyber security department relies on clearly defined roles and responsibilities to ensure that defences are proactive, incidents are managed swiftly, and compliance is maintained. This article explains the structure of a modern cyber security team, the roles you’ll typically find within it, how they collaborate, and what skills, qualifications, and salaries are expected in the UK job market.

Why the UK Could Be the World’s Next Cyber Security Jobs Hub

Cyber security has become one of the defining challenges of the digital age. From protecting personal data and financial transactions to defending national infrastructure and corporate systems, the demand for strong cyber defences has never been higher. As businesses, governments, and individuals depend more heavily on digital services, the scale and sophistication of cyber threats have risen dramatically. Ransomware attacks, data breaches, state-sponsored cyber operations, and insider threats are now everyday risks. In response, organisations worldwide are investing heavily in cyber security talent. The United Kingdom is uniquely positioned to become a global cyber security jobs hub. With its strong tech sector, world-class universities, advanced defence capabilities, and established financial markets, the UK already has the foundations. The question is whether it can scale up, attract, and retain the right talent to meet global demand. This article explores why the UK is poised to become the world’s next cyber security jobs hub, the opportunities available, the challenges ahead, and what needs to happen for this vision to be realised.