Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Support and improve information security frameworks and conduct compliance risk assessments.
- Company: Join a global leader in the shipping industry based in Southampton.
- Benefits: Competitive salary, bonus scheme, 26 holiday days, and pension contributions.
- Why this job: Make a real impact on information security in a growing team.
- Qualifications: Experience with ISO27001, NIST, and strong communication skills.
- Other info: Hybrid role with excellent career growth opportunities.
The predicted salary is between 50000 - 55000 £ per year.
I am looking to recruit a skilled Information Security Analyst to join a global leader in the shipping space, based in the heart of Southampton. You’ll be joining a growing team within the CNI space. The role will be hybrid, likely to be 2-3 days in office a week, in Southampton, so you will need to be based within a commutable distance.
This is an Information Security Analyst role that focuses more on the GRC and policies/procedures rather than being a SOC/Technical Security Analyst role. The client is looking for someone who is experienced with ISO27001 and NIST. It is likely that the role will grow and develop in the future, depending on organisational growth. In the clients’ words, key elements of the role include:
- Support the implementation, monitoring, and continuous improvement of information security frameworks (NIST CSF, NIS Regulations, ISO/IEC 27001).
- Maintain and improve procedures, technologies and methods used to protect digital files and computer systems against unauthorised access, modification or destruction.
- Coordinate and provide evidence for internal and external audits, certifications, and regulatory inspections.
- Conduct compliance risk assessments and gap analyses, identifying areas for improvement and recommending corrective actions.
- Track and report compliance status across systems and business units, highlighting risks and remediation progress.
What you’ll need to succeed:
- GRC skills and strong communication skills.
- Strong understanding of risks associated with bad security processes.
- Experience implementing ISO27001 and NIST.
- CE+ would be advantageous.
- A solid understanding of the cyber security risks associated with various technologies and how to apply appropriate controls to mitigate these.
- Experience in risk assessment and management in the context of information security.
What you’ll get in return:
As well as a salary of up to £55,000, there is also a company bonus scheme, 26 holiday days + bank holidays, plus they will match your pension contribution, plus 2%, up to a 10% company contribution. There are other benefits also.
Information Security Analyst in Southampton employer: hays-gcj-v4-pd-online
Contact Detail:
hays-gcj-v4-pd-online Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Security Analyst in Southampton
✨Tip Number 1
Network like a pro! Reach out to people in the industry, attend events, and connect on LinkedIn. You never know who might have the inside scoop on job openings or can refer you directly.
✨Tip Number 2
Prepare for interviews by researching the company and its security policies. Show them you’re not just another candidate; you’re genuinely interested in their mission and how you can contribute to their GRC efforts.
✨Tip Number 3
Practice your responses to common interview questions, especially around ISO27001 and NIST. We want you to feel confident discussing your experience and how it aligns with their needs.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen. Plus, we love seeing familiar faces from our community!
We think you need these skills to ace Information Security Analyst in Southampton
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Information Security Analyst role. Highlight your GRC experience and any relevant certifications like ISO27001 and NIST. We want to see how your skills match what we're looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about information security and how your background makes you a great fit for our team. Keep it concise but impactful!
Showcase Your Communication Skills: Since strong communication skills are key for this role, make sure to demonstrate them in your application. Whether it's through clear language in your CV or cover letter, we want to see that you can convey complex ideas simply.
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it’s super easy to do!
How to prepare for a job interview at hays-gcj-v4-pd-online
✨Know Your GRC Inside Out
Make sure you brush up on your Governance, Risk, and Compliance (GRC) knowledge. Familiarise yourself with ISO27001 and NIST frameworks, as these will be crucial in the role. Be ready to discuss how you've implemented these standards in past experiences.
✨Showcase Your Communication Skills
Since strong communication skills are a must for this position, prepare examples of how you've effectively communicated complex security concepts to non-technical stakeholders. This will demonstrate your ability to bridge the gap between technical and non-technical teams.
✨Prepare for Scenario-Based Questions
Expect questions that ask you to solve hypothetical situations related to information security risks. Think about how you would conduct compliance risk assessments or handle a security breach. Practising these scenarios can help you articulate your thought process clearly.
✨Highlight Your Continuous Improvement Mindset
The role involves monitoring and improving security frameworks, so be prepared to discuss how you've contributed to continuous improvement in previous roles. Share specific examples of how you've identified gaps and implemented corrective actions to enhance security measures.
