At a Glance
- Tasks: Manage information security risks and support compliance with Cyber Essentials+ and ISO27001 standards.
- Company: Join Gigged AI, a leading open talent marketplace in the tech sector.
- Benefits: Competitive day rate, flexible working options, and potential for contract extension.
- Other info: Hybrid role with opportunities for professional growth and collaboration.
- Why this job: Make a real impact on information security in a dynamic enterprise environment.
- Qualifications: Experience in Information Security, Cyber Essentials+, and ISO27001 required.
The predicted salary is between 40000 - 48000 Β£ per year.
Gigged AI is an open talent marketplace specialising in the IT and technology sector. We have an opportunity for an InfoSec Analyst with experience of Cyber Essentials and ISO27001. This role is preferably hybrid, with 2 days per week in Glasgow City Centre Office. However, flexibility will be considered for any applicants outwith Glasgow.
Location: UK-based
Duration: Initial 3-month contract (expected extension up to 12 months with rolling break clauses)
Start Date: ASAP
Day Rate: Β£400
IR35 Status: Inside IR35
Overview
We are searching for an experienced Information Security Analyst to join our security function on a long-term contract basis. This role will focus heavily on Cyber Essentials+, ISO27001, information security governance, risk management, and internal security assessments across a large enterprise environment.
Key Responsibilities
- Identify, analyse, and support the management of information security and IT risks across the business
- Work closely with stakeholders, vendors, and internal teams to assess security controls and risk exposure
- Support compliance activities aligned to Cyber Essentials+ and ISO27001 standards
- Create and maintain information security policies, standards, procedures, and wider GRC documentation
- Conduct internal security assessments and reviews, clearly documenting findings and recommendations
- Maintain key security knowledge resources including process documentation, RACIs, training materials, and contract information
- Collaborate with risk owners to identify, manage, and mitigate vulnerabilities and threats effectively
Key Experience Required
- Strong experience within Information Security / GRC environments
- Proven experience working with: Cyber Essentials+, ISO27001
- Experience conducting security risk and controls assessments
- Strong documentation and stakeholder management skills
- Experience producing and maintaining security policies, standards, and procedures
- Ability to communicate security findings clearly to both technical and non-technical stakeholders
Nice to Have
- Broader vulnerability management exposure
- Experience working within enterprise-scale or regulated environments
Information Security Analyst (Cyber Essentials+/ISO27001) β Contract in Glasgow employer: Gigged.AI
At Gigged AI, we pride ourselves on being an exceptional employer that values flexibility and innovation in the IT sector. Our hybrid work model allows for a balanced approach to work-life integration, particularly for our Information Security Analyst role based in the vibrant Glasgow City Centre. We foster a collaborative culture that encourages professional growth through continuous learning opportunities and meaningful projects, making us an attractive choice for those seeking a rewarding career in information security.
StudySmarter Expert Adviceπ€«
We think this is how you could land Information Security Analyst (Cyber Essentials+/ISO27001) β Contract in Glasgow
β¨Tip Number 1
Network like a pro! Reach out to your connections in the InfoSec field, especially those who have experience with Cyber Essentials+ and ISO27001. A friendly chat can lead to insider info about job openings or even referrals.
β¨Tip Number 2
Prepare for interviews by brushing up on your knowledge of information security governance and risk management. We recommend practising common interview questions related to security assessments and compliance activities to showcase your expertise.
β¨Tip Number 3
Donβt underestimate the power of follow-ups! After an interview, drop a quick thank-you email to express your appreciation. It keeps you fresh in their minds and shows your enthusiasm for the role.
β¨Tip Number 4
Apply through our website for the best chance at landing that contract! Weβre always on the lookout for talented individuals like you, and applying directly can help us match your skills with the right opportunities.
We think you need these skills to ace Information Security Analyst (Cyber Essentials+/ISO27001) β Contract in Glasgow
Some tips for your application π«‘
Tailor Your CV:Make sure your CV is tailored to the Information Security Analyst role. Highlight your experience with Cyber Essentials+ and ISO27001, and donβt forget to showcase your documentation and stakeholder management skills!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why youβre the perfect fit for this role. Mention specific experiences that relate to the key responsibilities and show us your passion for information security.
Showcase Your Communication Skills:Since you'll be communicating with both technical and non-technical stakeholders, make sure to demonstrate your ability to convey complex security findings in a clear and concise manner in your application.
Apply Through Our Website:We encourage you to apply through our website for a smoother process. Itβs the best way for us to receive your application and get you on board as soon as possible!
How to prepare for a job interview at Gigged.AI
β¨Know Your Standards
Make sure you brush up on Cyber Essentials+ and ISO27001 before the interview. Be ready to discuss how you've applied these standards in your previous roles, as this will show your expertise and understanding of the requirements.
β¨Showcase Your Risk Management Skills
Prepare examples of how you've identified and managed information security risks in past positions. Use the STAR method (Situation, Task, Action, Result) to structure your responses, making it easy for the interviewer to follow your thought process.
β¨Communicate Clearly
Since you'll need to explain security findings to both technical and non-technical stakeholders, practice articulating complex concepts in simple terms. This will demonstrate your ability to bridge the gap between different audiences.
β¨Engage with Stakeholders
Think about how you've collaborated with various teams in the past. Be prepared to discuss specific instances where you worked closely with stakeholders or vendors to assess security controls and manage risks effectively.
