Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Support governance, lead audits, and enhance security resilience in a dynamic law firm.
- Company: Join a forward-thinking law firm on a major cyber transformation journey.
- Benefits: Enjoy a competitive salary, hybrid working, and strong UK benefits.
- Why this job: Be part of a strategic cyber investment with a focus on innovation and security.
- Qualifications: Experience in information security or compliance; knowledge of ISO 27001 is essential.
- Other info: Opportunity to work in a collaborative environment with flexible working options.
The predicted salary is between 55729 - 65729 £ per year.
Hybrid (Cheltenham, 3 Days Onsite + Flexible Working) | £55,729–£65,729 + Strong UK Benefits | Strategic Cyber Investment
Be part of a forward-thinking law firm undergoing a major cyber transformation. As an Information Security Analyst, you’ll support governance, lead audits, and build security resilience across multiple jurisdictions.
What You’ll Be Doing- Maintain and improve the ISMS, including policies, procedures, and guidelines
- Ensure ongoing ISO 27001:2022 alignment across UK and international offices
- Conduct internal audits, lead remediation efforts, and support third-party reviews
- Run supplier due diligence and respond to client risk assessments
- Investigate and escalate incidents, contributing to ongoing threat awareness
- Deliver awareness training and drive adoption of secure behaviours
- Experience in information security or compliance-based roles
- Knowledge of ISO 27001, Cyber Essentials, NIST or similar frameworks
- Ability to communicate and collaborate across business functions
- Comfortable working in cloud and Microsoft 365 environments
- Certifications like CISMP, CISSP or ISO 27001 Lead Auditor are a bonus
Information Security Analyst Contract employer: Locke and McCloud
Contact Detail:
Locke and McCloud Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Security Analyst Contract
✨Tip Number 1
Familiarise yourself with ISO 27001:2022 and other relevant frameworks. Understanding these standards will not only help you in interviews but also demonstrate your commitment to the role and its requirements.
✨Tip Number 2
Network with professionals in the information security field, especially those who have experience in law firms or similar environments. Engaging with them can provide insights into the specific challenges and expectations of the role.
✨Tip Number 3
Prepare to discuss real-world scenarios where you've successfully managed security incidents or audits. Being able to share concrete examples will showcase your practical experience and problem-solving skills.
✨Tip Number 4
Stay updated on the latest trends and threats in cybersecurity. Showing that you're proactive about ongoing learning will impress potential employers and highlight your dedication to the field.
We think you need these skills to ace Information Security Analyst Contract
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in information security and compliance roles. Emphasise your knowledge of ISO 27001 and any certifications you hold, such as CISMP or CISSP.
Craft a Strong Cover Letter: In your cover letter, express your enthusiasm for the role and the company's cyber transformation. Mention specific experiences that demonstrate your ability to maintain ISMS and conduct audits.
Showcase Relevant Skills: Clearly outline your skills related to governance, risk assessments, and incident investigation. Use examples from previous roles to illustrate your capability in these areas.
Highlight Collaborative Experience: Since the role requires communication across business functions, include examples of how you've successfully collaborated with different teams in past positions. This will show your ability to work effectively in a hybrid environment.
How to prepare for a job interview at Locke and McCloud
✨Showcase Your Knowledge of ISO Standards
Make sure to brush up on ISO 27001:2022 and other relevant frameworks. Be prepared to discuss how you've applied these standards in previous roles, as this will demonstrate your expertise and understanding of the requirements for the position.
✨Prepare for Scenario-Based Questions
Expect questions that ask you to describe how you would handle specific security incidents or audits. Think of examples from your past experience where you successfully managed similar situations, as this will highlight your problem-solving skills and practical knowledge.
✨Emphasise Your Communication Skills
Since the role involves collaboration across various business functions, be ready to discuss how you've effectively communicated complex security concepts to non-technical stakeholders. This will show that you can bridge the gap between technical and non-technical teams.
✨Demonstrate Your Commitment to Continuous Learning
Mention any relevant certifications you hold, like CISMP or CISSP, and express your enthusiasm for ongoing professional development. This shows that you're proactive about staying updated in the ever-evolving field of information security.
