Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Support and improve information security frameworks while ensuring compliance and risk management.
- Company: Join a global leader in the shipping industry with a focus on innovation.
- Benefits: Competitive salary, bonus scheme, 26 holiday days, and pension contributions.
- Why this job: Make a real impact in cybersecurity while growing your skills in a dynamic environment.
- Qualifications: Experience with GRC, ISO27001, NIST, and strong communication skills.
- Other info: Hybrid work model with excellent career growth opportunities.
The predicted salary is between 40000 - 66000 £ per year.
Permanent - £50k-£55k + strong benefits
Location: Hybrid - Southampton area
Your new company
I am looking to recruit a skilled Information Security Analyst to join a global leader in the shipping space, based in the heart of Southampton. You'll be joining a growing team within the CNI space. The role will be hybrid, likely to be 2-3 days in office a week, in Southampton, so you will need to be based within a commutable distance.
Your new role
This is an Information Security Analyst role that focuses more on the GRC and policies/procedures rather than being a SOC/Technical Security Analyst role. The client is looking for someone who is experienced with ISO27001 and NIST. It is likely that the role will grow and develop in the future, depending on organisational growth. In the clients' words, key elements of the role include:
- Support the implementation, monitoring, and continuous improvement of information security frameworks (e.g., NIST CSF, NIS Regulations, ISO/IEC 27001).
- Maintain and improve procedures, technologies and methods used to protect digital files and computer systems against unauthorised access, modification or destruction.
- Coordinate and provide evidence for internal and external audits, certifications, and regulatory inspections.
- Conduct compliance risk assessments and gap analyses, identifying areas for improvement and recommending corrective actions.
- Track and report compliance status across systems and business units, highlighting risks and remediation progress.
What you'll need to succeed
- GRC skills and strong communication skills
- Strong understanding of risks associated with bad security processes.
- Experience implementing ISO27001 and NIST. CE+ would be advantageous.
- A solid understanding of the cyber security risks associated with various technologies and how to apply appropriate controls to mitigate these.
- Experience in risk assessment and management in the context of information security.
- CompTIA Security+ and ISO27001 certificates would be advantageous.
What you'll get in return
As well as a salary of up to £55000, there is also a company bonus scheme, 26 holiday days + bank holidays, plus they will match your pension contribution, plus 2%, up to a 10% company contribution. There are other benefits also.
What you need to do now
If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now. If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion about your career.
Information Security Analyst in Northam employer: Hays Technology
Contact Detail:
Hays Technology Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Security Analyst in Northam
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, especially those already working in GRC roles. A casual chat can lead to insider info about job openings or even referrals.
✨Tip Number 2
Prepare for interviews by brushing up on your knowledge of ISO27001 and NIST. Be ready to discuss how you've implemented these frameworks in past roles. Show them you know your stuff!
✨Tip Number 3
Don’t just apply through job boards; head over to our website and submit your application there. It shows you're genuinely interested and gives you a better chance of standing out!
✨Tip Number 4
Follow up after interviews! A quick thank-you email can keep you fresh in their minds and show your enthusiasm for the role. Plus, it’s a great way to reiterate your fit for the position.
We think you need these skills to ace Information Security Analyst in Northam
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Information Security Analyst role. Highlight your GRC experience and any relevant certifications like ISO27001 or NIST. We want to see how your skills match what we're looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about information security and how your background makes you a great fit for our team. Keep it concise but impactful!
Showcase Your Communication Skills: Since strong communication skills are key for this role, make sure to demonstrate them in your application. Whether it's through your CV or cover letter, clarity and professionalism will go a long way with us.
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it’s super easy to do!
How to prepare for a job interview at Hays Technology
✨Know Your Frameworks
Make sure you brush up on your knowledge of ISO27001 and NIST. Be ready to discuss how you've implemented these frameworks in past roles, as well as any challenges you faced and how you overcame them.
✨Showcase Your GRC Skills
Since this role is GRC-focused, prepare examples that highlight your experience with governance, risk management, and compliance. Think about specific projects where you improved security policies or conducted risk assessments.
✨Communicate Clearly
Strong communication skills are a must for this position. Practice explaining complex security concepts in simple terms, as you'll need to convey important information to various stakeholders.
✨Prepare for Compliance Questions
Expect questions about compliance audits and how you've handled them in the past. Be ready to discuss your approach to tracking compliance status and reporting risks, as this will be crucial for the role.
