Security Governance Analyst

Northampton

1 month ago

Applications closed

Related Jobs

View all jobs

IT Risk Manager

Information Security Analyst

IT Security Analyst

Security Operations Manager

Cyber Security Analyst

Governance, Risk and Compliance (GRC) Analyst

Job Title: Security Governance Analyst
Location: Northampton (Minimum of 2 days onsite required)
Contract: Inside IR35
Hours/Duration: Full-time, 5 days per week. Overall project expected to be 3 months in duration.

The Role of Security Governance Analyst
Our client, who is one the UK's leading trade suppliers, is seeking an experienced Security Governance Analyst to join the Information Security Team to assist with improving the organisations security and core governance and compliance activities across the business.

This role is expected to last for 3 months in duration, and the successful candidate will need to attend the client site in Northampton 2 days a week minimum, with the remainder worked from home, this work arrangement is essential based on the role requirements.

Key Responsibilities

Design, develop and deploy phishing campaigns to all email users using Microsoft Defender to raise security awareness
Triage and manage security related requests and incidents through the IT Service Management (ITSM) platform, ensuring timely and effective resolution
Assist with Subject Access Request (SARs) and Right to be Forgotten (RTBF) requests in line with GDPR
Support the evaluation of third-party vendors by gathering risk information, reviewing security documentation, and conducting assessments to ensure compliance with company standards.
Coordinate internal and external penetration testing activities, liaising between technical teams and external testers, tracking findings, and ensuring remediation plans are in place.
About you
The successful candidate will have previous experience working as a Security Governance Analyst, and be confident in governance checking, risk management and regulatory compliance.

You will also have the following skills:

An ability to identify, assess, and mitigate cybersecurity risks
Security architecture knowledge, specifically designing and implementing secure systems and networks
An understanding of system and network security, including security protocols, firewalls, intrusion detection systems, and encryption technologies
Be able to respond and manage security incidents effectively
Compliance and Regulatory knowledge, and familiarity with laws and regulations such as GDPR, HIPAA, and ISO standards
A natural ability to analyse complex security issues and develop effective solutions
Qualifications in either CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), or CRISC (Certified in Risk and Information Systems Control) are advantageous but not essentialWe are looking for candidates who are available to start work immediately and must hold the required experience outlined above. We aim to respond to all applicants within 5 working days - to avoid missing out please apply today, and one of our Team will be in touch

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Jun 17, 2025

Jobs

LinkedIn Profile Checklist for Cybersecurity Jobs: 10 Tweaks to Supercharge Recruiter Engagement

In the ever-evolving realm of cybersecurity, having a LinkedIn profile that reflects both your technical prowess and threat-hunting acumen is vital. Organisations are on the lookout for professionals skilled in penetration testing, incident response, security architecture and compliance. With hiring managers scanning dozens of profiles daily, your profile needs to not just rank in searches but convey your expertise in safeguarding digital assets. This step-by-step LinkedIn for cybersecurity jobs checklist offers ten practical tweaks to supercharge recruiter engagement. Whether you’re an aspiring security analyst, a seasoned penetration tester or a chief information security officer aiming for board-level roles, these actionable optimisations will sharpen your LinkedIn presence and position you as a top infosec candidate.

Jun 16, 2025

Education

Part-Time Study Routes That Lead to Cyber Security Jobs: Evening Courses, Bootcamps & Online Masters

The frequency and sophistication of cyber-attacks have exploded in recent years, making cyber security one of the UK’s most in-demand skill sets. From safeguarding NHS patient data to defending FTSE 100 financial systems, organisations across sectors require qualified professionals—penetration testers, security analysts, incident responders and security architects—to protect critical infrastructure. Yet many professionals cannot pause their careers to upskill full time. Fortunately, an ecosystem of part-time learning pathways—evening courses, intensive bootcamps and flexible online master’s programmes—enables you to learn cyber security while working. This comprehensive guide explores every route: foundational CPD, immersive bootcamps, accredited online MScs, plus funding options, planning strategies and a real-world case study. Whether you’re an IT support technician, a software developer or a compliance manager aiming to pivot into security, you’ll discover how to build expertise at your own pace.

Jun 14, 2025

Careers

The Ultimate Assessment-Centre Survival Guide for Cyber Security Jobs in the UK

Assessment centres for cyber security positions in the UK are designed to mirror real-world threat landscapes and test both your technical acumen and soft skills under pressure. Across multiple stages—psychometric assessments, penetration testing exercises, incident response group tasks, case studies, interviews and even informal networking breaks—employers assess your ability to identify vulnerabilities, collaborate in high-stakes scenarios and communicate effectively. This guide walks you through each component, equipping you to stand out and secure your next role in cyber defence.