Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Manage security questionnaires and conduct vendor risk assessments to ensure compliance.
- Company: Join a leading software company transforming the construction industry with innovative digital solutions.
- Benefits: Enjoy a competitive salary, flexible working, private medical insurance, and generous leave.
- Why this job: Be part of a mission-driven team focused on security and continuous improvement in a global environment.
- Qualifications: 3+ years in Information Security with strong communication skills and knowledge of key frameworks.
- Other info: Opportunity for career development and training in a hybrid work setting.
IT Security Analyst
Please read the information in this job post thoroughly to understand exactly what is expected of potential candidates.
Location: Hybrid – Buckinghamshire
Salary: £50,000 – £55,000 + Benefits
83zero are partnered with a market-leading software company who are on a mission to transform the construction and related industries through their end-to-end digital solutions. With teams across the UK, Europe, USA and India, they are delivering large-scale transformation projects on a global scale and are continuing to expand.
We are now looking for a highly organised and detail-driven IT Security Analyst to join their growing security function. This role plays a key part in securing customer trust and supplier integrity, ensuring compliance with recognised frameworks, and supporting wider security initiatives.
The Role
Own and manage responses to customer security questionnaires (SIG, CAIQ, bespoke).
Work cross-functionally with Legal, Compliance, Procurement, Product and Security teams.
Maintain the security assurance matrix in line with ISO 27001, Cyber Essentials, and SOC 2.
Act as the key point of contact for security assurance queries.
Conduct vendor risk assessments against ISO 27001, NIST, and CIS Controls.
Manage the third-party due diligence programme, including onboarding and periodic reviews.
Track and publish key security metrics such as risk severity, SLA adherence, and turnaround times.
Provide audit artefacts and support internal/external audits.
Contribute to broader security initiatives and continuous improvement within the organisation.
About You
3+ years\’ experience in Information Security, GRC, or Vendor Risk Management.
Strong experience issuing or responding to security questionnaires.
Knowledge of ISO 27001 Annex A, SOC 2, and GDPR/CCPA.
Excellent communication skills, able to translate technical risk to non-technical stakeholders.
Eligible to work in the UK and able to pass background checks.
Desirable:
Certifications such as CRISC, CISSP, CISA, or ISO 27001 Lead Auditor.
Familiarity with SaaS/cloud platforms (AWS, Azure, GCP).
Understanding of secure software supply chains (SBOM, SLSA).
What\’s on Offer
£50,000 – £55,000 base salary
25 days annual leave + public holidays (increasing with service)
Matched pension scheme
Private medical insurance & life assurance
Fitness allowance
Paid study leave & volunteering days
Flexible hybrid working
Excellent career development and training opportunities
IT Security Analyst employer: 83zero Ltd
Contact Detail:
83zero Ltd Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land IT Security Analyst
✨Tip Number 1
Familiarise yourself with the specific compliance frameworks mentioned in the job description, such as ISO 27001 and SOC 2. Understanding these standards will not only help you in interviews but also demonstrate your commitment to the role.
✨Tip Number 2
Network with professionals in the IT security field, especially those who have experience in vendor risk management. Engaging with industry peers can provide insights into best practices and may even lead to referrals.
✨Tip Number 3
Prepare to discuss real-world scenarios where you've managed security questionnaires or conducted vendor risk assessments. Having concrete examples ready will showcase your hands-on experience and problem-solving skills.
✨Tip Number 4
Stay updated on the latest trends and threats in IT security, particularly those affecting the construction and software industries. This knowledge will help you engage in meaningful conversations during interviews and show your proactive approach.
We think you need these skills to ace IT Security Analyst
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in Information Security, GRC, or Vendor Risk Management. Emphasise your familiarity with ISO 27001, SOC 2, and any certifications you hold.
Craft a Strong Cover Letter: In your cover letter, explain why you're interested in the IT Security Analyst role and how your skills align with the company's mission to transform the construction industry through digital solutions.
Highlight Communication Skills: Since the role requires translating technical risks to non-technical stakeholders, provide examples in your application of how you've successfully communicated complex information in the past.
Showcase Continuous Improvement: Mention any initiatives you've contributed to that demonstrate your commitment to continuous improvement in security practices. This could include projects or processes you've implemented in previous roles.
How to prepare for a job interview at 83zero Ltd
✨Know Your Frameworks
Familiarise yourself with ISO 27001, SOC 2, and GDPR/CCPA. Be prepared to discuss how these frameworks apply to the role and how you have implemented them in past experiences.
✨Showcase Your Communication Skills
As an IT Security Analyst, you'll need to translate technical risks to non-technical stakeholders. Practice explaining complex security concepts in simple terms to demonstrate your communication prowess.
✨Prepare for Security Questionnaires
Since you'll be managing responses to customer security questionnaires, review common questions and prepare thoughtful answers. Highlight your experience in issuing or responding to such questionnaires.
✨Highlight Cross-Functional Collaboration
This role involves working with various teams like Legal, Compliance, and Procurement. Be ready to share examples of how you've successfully collaborated across departments to achieve security goals.
