Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Analyse and manage information security risks while ensuring compliance with policies.
- Company: Join a leading firm in London focused on innovative security solutions.
- Benefits: Enjoy hybrid work flexibility and competitive daily rates.
- Why this job: Make a real impact by bridging policy and practice in cybersecurity.
- Qualifications: Experience in GRC and technical security areas like VAPT or Incident Response required.
- Other info: Contract role until the end of the year, perfect for gaining valuable experience.
The predicted salary is between 42000 - 84000 £ per year.
Location: London (Hybrid – 3 days on-site per week)
Contract Duration: Until end of the year
Rate: £550 per day (Inside IR35)
Overview: My client is seeking an experienced Information Security Risk Analyst with a strong background in Governance, Risk, and Compliance (GRC), complemented by hands-on technical security expertise. This role requires someone who can bridge the gap between policy and practice, ensuring that risk management frameworks are grounded in real-world technical understanding.
Key Requirements:
- Proven experience in information security risk management, particularly in GRC.
- Solid technical security background in at least one of the following areas:
- Vulnerability Assessment & Penetration Testing (VAPT)
- Threat Intelligence
- Incident Response
- Or other relevant technical security domains.
Information Security Analyst employer: Cititec
Contact Detail:
Cititec Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Security Analyst
✨Tip Number 1
Familiarise yourself with the latest trends and frameworks in Governance, Risk, and Compliance (GRC). Being well-versed in current regulations and best practices will help you demonstrate your expertise during discussions.
✨Tip Number 2
Network with professionals in the information security field, especially those who focus on GRC. Attend industry events or webinars to connect with potential colleagues and learn about their experiences.
✨Tip Number 3
Prepare to discuss real-world scenarios where you've successfully managed risk or implemented security measures. Having concrete examples ready will showcase your hands-on experience and technical knowledge.
✨Tip Number 4
Research our company culture and values at StudySmarter. Understanding what we stand for will help you align your responses and show how you can contribute to our mission during interviews.
We think you need these skills to ace Information Security Analyst
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your experience in information security risk management, particularly in Governance, Risk, and Compliance (GRC). Include specific examples of your technical expertise in areas like Vulnerability Assessment, Threat Intelligence, or Incident Response.
Craft a Compelling Cover Letter: In your cover letter, explain how your background aligns with the job requirements. Emphasise your ability to bridge policy and practice, and provide examples of how you've successfully managed risk in previous roles.
Highlight Stakeholder Engagement Skills: Since strong stakeholder engagement is crucial for this role, make sure to mention any relevant experiences where you effectively communicated and reported on risk management to stakeholders.
Proofread Your Application: Before submitting, carefully proofread your application materials. Check for any spelling or grammatical errors, and ensure that all information is clear and concise. A polished application reflects your attention to detail, which is vital in the field of information security.
How to prepare for a job interview at Cititec
✨Showcase Your GRC Knowledge
Make sure to highlight your experience in Governance, Risk, and Compliance during the interview. Be prepared to discuss specific frameworks you've worked with and how you've applied them in real-world scenarios.
✨Demonstrate Technical Expertise
Since a solid technical background is crucial for this role, be ready to talk about your hands-on experience in areas like Vulnerability Assessment or Incident Response. Share examples of how you've tackled security challenges in the past.
✨Communicate Risk Effectively
Practice articulating how you assess and manage risk in alignment with business objectives. Use clear examples to demonstrate your ability to bridge the gap between policy and practice, ensuring that your communication is tailored to both technical and non-technical stakeholders.
✨Engage with Stakeholders
Prepare to discuss your experience in stakeholder engagement. Think of instances where you've successfully collaborated with different teams or departments, and be ready to explain how you built those relationships to enhance security practices.
