Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join our team to ensure compliance with security standards and frameworks.
- Company: HL is the UK's top investment platform, dedicated to helping investors succeed.
- Benefits: Enjoy flexible working, generous holidays, and a range of health and wellness perks.
- Why this job: Be part of a dynamic team focused on innovation and continuous learning in a supportive culture.
- Qualifications: Experience in Security Compliance, preferably in Financial Services, with relevant certifications required.
- Other info: Hybrid working options available; we value diversity and encourage all to apply.
Excited to grow your career?
Our purpose is to make it easy for people to save and invest for a better future. We are looking for great people to join us, so please come and invest in YOUR future at HL.
We know that sometimes people can be put off applying for a job if they don’t tick every box. If you’re excited about working for us and have most of the skills or experience we’re looking for, please go ahead and apply. We’d love to hear from you!
About the role
An exciting opportunity has arisen to join our Information Security Compliance team. You will assist in delivering compliance to internal and external standards, frameworks, and attestations. You will also be responsible for the maintenance of documentation and processes necessary to maintain compliance to industry frameworks, including assisting with post internal and external audit finalisation of findings and follow-ups.
What you’ll be doing
Assisting in meeting compliance requirements within HL, such as PCI-DSS and in line with frameworks such as SWIFT CSCF, CSA CCM and NIST CSF.
Monitoring of scheduled compliance activities such as Firewall rule reviews, developer security training, colleague policy attestations and collecting and collating evidence of such activities to assist in audit and assessment activities.
Security Compliance oversight of transformation initiatives and cloud security compliance activities.
Collating and compiling Management Information to provide assurance to the Head of Infosec and CISO of ongoing security compliance.
Assisting in creating, reviewing and updating key ISMS documentation.
Working with risk functions to complete security controls testing and alignment of controls with industry frameworks, performing gap analysis and assisting with remediation activities.
Maintaining the program of remediation for audit and assessment findings.
Provide SME support to cloud teams for security compliance requirements.
About you
Proven experience in a Security Compliance or Information Security role with a strong technical background.
Experience must have been gained within a regulated industry (preferably Financial Services) with experience of securing cloud environments such as AWS & Azure and understanding compliance requirements for cloud environments.
Must be experienced in liaising with stakeholders at all levels and be confident in influencing business area’s to meet compliance requirements.
Certified to a recognised industry certification such as CISSP, CCSK, CCAK or equivalent.
Demonstrable experience of working with compliance and risk management in a NIST CSF or ISO27001 aligned environment, along with PCI-DSS and SWIFT.
Experience of identifying, articulating, managing and reporting Information Security risks and an understanding or risk management practices, aligned with industry best practice.
Interview process
This will be a two-stage interview process, consisting of an introductory conversation and competency and behavioural based interview.
Working Schedule
The role is based in our Bristol head office, BS1 5HL. This role is permanent, full time, 37.5 hours per week, Monday to Friday. We have returned to the office, however for this role we offer a hybrid flexible working pattern.
Why us?
Here at HL, we’re the UK’s number 1 investment platform for private investors, based in Bristol. For more than 40 years we’ve helped investors save time, tax and money on their investments.
To achieve our mission, we believe we have a workplace like no other, with constant learning, dynamic teams, and a great ethos. We’re steered by core values that promote service, quality, innovation, and opportunity in everything we do.
What’s on offer?
Discretionary annual bonus and annual pay review
25 days holiday plus bank holidays and 1-day additional Christmas closure
Option to purchase an additional 5 days holiday
Flexible working options available, including hybrid working
Enhanced parental leave
Pension scheme up to 11% employer contribution
Sharesave scheme – have a real stake in HL’s future
Income Protection and Life insurance (4 x salary core level of cover)
Private medical insurance
Health care cash plans – including optical, dental, and outpatient care
– confidential support including mental health counselling and remote GP
Wellhub – unlimited access to fitness providers and wellness coach sessions
Variety of travel to work schemes with bike storage and shower facilities
Inhouse barista and deli serving subsidised coffee and sandwiches
Two paid volunteering days per year
dependant on role level
only available to select during our annual benefits window, in November each year
Hargreaves Lansdown is an inclusive employer that values diversity in its workforce. We encourage applications from all individuals without regard to race, religion, gender, sexual orientation, national origin, disability or age.
This role may also be available on a flexible working or part time basis – please ask the Recruitment & Onboarding team for more information.
Please note, we are unable to provide employment sponsorship to candidates.
Information Security Compliance Analyst employer: Hargreaves Lansdown
Contact Detail:
Hargreaves Lansdown Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Security Compliance Analyst
✨Tip Number 1
Familiarize yourself with the specific compliance frameworks mentioned in the job description, such as PCI-DSS, SWIFT CSCF, and NIST CSF. Understanding these frameworks will not only help you during the interview but also demonstrate your commitment to the role.
✨Tip Number 2
Highlight any experience you have with cloud security compliance, especially with AWS and Azure. Be prepared to discuss specific projects or challenges you've faced in securing cloud environments, as this is a key aspect of the role.
✨Tip Number 3
Prepare examples of how you've successfully liaised with stakeholders at various levels in previous roles. This will showcase your ability to influence and communicate effectively, which is crucial for meeting compliance requirements.
✨Tip Number 4
Research Hargreaves Lansdown's values and culture. Being able to align your personal values with those of the company can make a strong impression during the interview process, showing that you're not just a fit for the role, but for the organization as a whole.
We think you need these skills to ace Information Security Compliance Analyst
Some tips for your application 🫡
Tailor Your CV: Make sure to customize your CV to highlight your experience in Security Compliance and Information Security. Emphasize your technical background and any relevant certifications like CISSP or CCSK.
Craft a Compelling Cover Letter: Write a cover letter that showcases your passion for the role and the company. Mention specific compliance frameworks you have worked with, such as PCI-DSS or NIST CSF, and how your skills align with the job requirements.
Highlight Relevant Experience: In your application, clearly outline your experience in regulated industries, particularly in Financial Services. Provide examples of how you've managed compliance activities and liaised with stakeholders.
Show Enthusiasm: Express your excitement about the opportunity to work at HL and contribute to their mission. Let them know why you want to be part of their team and how you can add value to their Information Security Compliance efforts.
How to prepare for a job interview at Hargreaves Lansdown
✨Understand Compliance Frameworks
Make sure you have a solid understanding of the compliance frameworks mentioned in the job description, such as PCI-DSS, NIST CSF, and SWIFT. Be prepared to discuss your experience with these frameworks and how you've applied them in previous roles.
✨Showcase Your Technical Background
Highlight your technical skills and experience, especially in securing cloud environments like AWS and Azure. Be ready to provide specific examples of how you've managed security compliance in these settings.
✨Prepare for Behavioral Questions
Since the interview process includes competency and behavioral-based questions, think of situations where you've successfully influenced stakeholders or managed compliance challenges. Use the STAR method (Situation, Task, Action, Result) to structure your responses.
✨Demonstrate Risk Management Knowledge
Be prepared to discuss your understanding of risk management practices and how they align with industry best practices. Share examples of how you've identified and reported Information Security risks in your previous roles.
