At a Glance
- Tasks: Support governance, risk, and compliance activities in cybersecurity for a key client.
- Company: AgileSource, a forward-thinking company focused on enhancing cyber security maturity.
- Benefits: Gain hands-on experience, develop skills, and work in a dynamic environment.
- Other info: Opportunity to grow your career in a supportive and innovative team.
- Why this job: Make a real impact in cybersecurity while collaborating with industry leaders.
- Qualifications: Knowledge of cybersecurity frameworks and strong communication skills.
The predicted salary is between 45000 - 55000 £ per year.
AgileSource are looking for a skilled Information Security Analyst to help deliver governance, risk, and compliance (GRC) services for a key client engagement. In this role, you’ll collaborate with senior business stakeholders, technical teams, and security leaders to support the organisation in enhancing its cyber security maturity. You’ll contribute to risk management practices, compliance activities, and broader security governance, while assisting with the implementation and upkeep of recognised industry frameworks and standards. This position suits a security professional who is comfortable working in a client-facing capacity and can offer practical, risk-based guidance to a variety of audiences.
Key Responsibilities
- Assist in delivering cybersecurity governance, risk, and compliance activities aligned to recognised frameworks such as ISO 27001, NIST Cybersecurity Framework, Cyber Essentials, and GovAssure.
- Perform information security risk assessments across business operations, projects, systems, and third-party providers.
- Maintain and update risk registers, monitor mitigation activities, and support ongoing cyber risk management efforts.
- Develop and maintain security documentation, including policies, standards, audit artefacts, assessment outputs, and senior-level reporting.
- Provide support during internal and external audits, control assessments, and compliance reviews.
- Engage with stakeholders across technical teams, programme delivery functions, and leadership to gather requirements, collect evidence, and support security initiatives.
- Contribute to supplier security assessments and third-party risk processes.
- Support the evolution of security governance frameworks, processes, and control environments.
- Help embed secure-by-design principles, data governance practices, and security standards across transformation, recovery, and operational initiatives.
- Participate in organisational security governance activities, including awareness, reporting, and risk communication.
GRC Information Security Analyst - FTC employer: Agilesource Ltd
AgileSource is an exceptional employer that prioritises employee growth and development within a collaborative and innovative work culture. As a GRC Information Security Analyst, you will have the opportunity to work closely with senior stakeholders and technical teams, enhancing your skills while contributing to meaningful cybersecurity initiatives. Located in a vibrant area, AgileSource offers a supportive environment that values work-life balance and provides access to ongoing training and professional development opportunities.
StudySmarter Expert Advice🤫
We think this is how you could land GRC Information Security Analyst - FTC
✨Tip Number 1
Network like a pro! Reach out to professionals in the GRC space on LinkedIn or at industry events. We can’t stress enough how valuable personal connections can be in landing that dream job.
✨Tip Number 2
Prepare for interviews by brushing up on your knowledge of frameworks like ISO 27001 and NIST. We recommend practising common interview questions related to risk management and compliance to show you’re the right fit.
✨Tip Number 3
Showcase your skills through real-world examples. When discussing your experience, we suggest using the STAR method (Situation, Task, Action, Result) to clearly demonstrate how you’ve tackled security challenges.
✨Tip Number 4
Don’t forget to apply directly through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you’re genuinely interested in joining our team.
We think you need these skills to ace GRC Information Security Analyst - FTC
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the GRC Information Security Analyst role. Highlight your experience with frameworks like ISO 27001 and NIST, and showcase any relevant projects or achievements that demonstrate your skills in risk management and compliance.
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're passionate about cybersecurity and how your background aligns with the responsibilities listed in the job description. Don’t forget to mention your client-facing experience!
Showcase Your Communication Skills:Since this role involves engaging with various stakeholders, make sure to highlight your communication skills in your application. Provide examples of how you've effectively communicated complex security concepts to non-technical audiences.
Apply Through Our Website:We encourage you to apply through our website for a smoother application process. It’s the best way for us to receive your application and ensures you don’t miss out on any important updates from our team!
How to prepare for a job interview at Agilesource Ltd
✨Know Your Frameworks
Familiarise yourself with the key frameworks mentioned in the job description, like ISO 27001 and NIST. Be ready to discuss how you've applied these in past roles or how you would approach implementing them in a new environment.
✨Showcase Your Risk Assessment Skills
Prepare examples of how you've conducted risk assessments in previous positions. Highlight specific situations where your guidance led to improved security measures or compliance outcomes, as this will resonate well with the interviewers.
✨Engage with Stakeholders
Since this role involves collaboration with various stakeholders, think of instances where you've successfully engaged with technical teams or leadership. Be ready to share how you gathered requirements and communicated security needs effectively.
✨Be Audit-Ready
Brush up on your experience with audits and compliance reviews. Prepare to discuss how you've supported internal and external audits in the past, and what steps you took to ensure that documentation and evidence were in order.
