Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Support global information security compliance and enhance security frameworks.
- Company: Dynamic company focused on maintaining a strong security culture.
- Benefits: Competitive salary, professional development, and flexible working environment.
- Why this job: Make a real impact in global security initiatives and compliance.
- Qualifications: Bachelor's degree and 3+ years in information security compliance.
- Other info: Collaborative team with opportunities for growth and exposure to diverse regulations.
The predicted salary is between 36000 - 60000 £ per year.
Information Security Compliance Analyst
Location: Worcester (hybrid 3 days in)
This role does not offer sponsorship so you need full right to work within the UK.
About the Role
We are seeking an Information Security Compliance Analyst to support the execution and enhancement of a global information security compliance programme. This role ensures that operations across multiple business units adhere to internal policies, international regulations, and recognised industry frameworks. It offers the opportunity to work cross-functionally with stakeholders worldwide and contribute to maintaining a strong security and compliance culture.
Key Responsibilities
-
Support the design, implementation, and continuous improvement of the information security compliance framework (e.g. ISO 27001, NIST, SOC 2, CMMC, HITRUST).
-
Conduct and coordinate internal audits, evaluate security controls, and document findings with recommended actions.
-
Track remediation activities for audit findings and compliance gaps in collaboration with IT and business stakeholders.
-
Monitor and support adherence to global data protection and privacy regulations such as GDPR, CCPA, and LGPD.
-
Assist in maintaining security policies, standards, and procedures, ensuring audit readiness and compliance reporting.
-
Contribute to third-party risk management reviews and due diligence activities.
-
Collaborate with global teams to drive best practice and support security awareness initiatives.
Skills and Experience
-
Bachelor\’s degree in Information Security, Risk Management, Computer Science, or related field.
-
3+ years\’ experience in information security compliance, auditing, or IT risk management.
-
Strong knowledge of security frameworks (ISO 27001, NIST, SOC 2, COBIT) and data protection laws (GDPR, CCPA, etc).
-
Experience conducting security audits and assessments with strong analytical and organisational skills.
-
Ability to communicate effectively with technical and non-technical stakeholders across multiple regions.
-
Professional certifications such as CISA, CISSP, ISO 27001 Lead Auditor, or CRISC are advantageous.
What’s in it for You?
-
Competitive salary and benefits package.
-
Opportunity to work in a global environment with exposure to diverse regulatory landscapes.
-
Involvement in high-impact security and compliance initiatives.
-
Support for professional development, including security training and certifications.
-
Flexible and collaborative working environment with scope to make a meaningful impact.
#J-18808-Ljbffr
Information Security Compliance Analyst employer: Hewett Recruitment
Contact Detail:
Hewett Recruitment Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Security Compliance Analyst
✨Tip Number 1
Network like a pro! Reach out to folks in the industry on LinkedIn or at local meetups. We all know that sometimes it’s not just what you know, but who you know that can help you land that dream job.
✨Tip Number 2
Prepare for interviews by researching the company and its compliance culture. We suggest practising common interview questions related to information security compliance so you can showcase your knowledge and confidence.
✨Tip Number 3
Don’t forget to follow up after your interviews! A quick thank-you email can go a long way in keeping you top of mind. We recommend mentioning something specific from your conversation to make it personal.
✨Tip Number 4
Apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who are proactive about their job search!
We think you need these skills to ace Information Security Compliance Analyst
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Information Security Compliance Analyst role. Highlight your experience with security frameworks and compliance regulations, as well as any relevant certifications. We want to see how your skills align with what we're looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about information security and how your background makes you a great fit for our team. Don't forget to mention specific experiences that relate to the job description.
Showcase Your Analytical Skills: Since this role involves conducting audits and evaluating security controls, be sure to showcase your analytical skills in your application. Provide examples of past projects where you've successfully identified compliance gaps or improved security measures.
Apply Through Our Website: We encourage you to apply through our website for the best chance of getting noticed. It’s super easy, and you'll be able to keep track of your application status. Plus, we love seeing applications come directly from our site!
How to prepare for a job interview at Hewett Recruitment
✨Know Your Frameworks
Make sure you brush up on key security frameworks like ISO 27001, NIST, and SOC 2. Be ready to discuss how you've applied these in your previous roles or how you would approach implementing them in this new position.
✨Showcase Your Audit Experience
Prepare specific examples of audits you've conducted or participated in. Highlight your analytical skills and how you tracked remediation activities. This will demonstrate your hands-on experience and understanding of compliance processes.
✨Understand Data Protection Laws
Familiarise yourself with GDPR, CCPA, and other relevant data protection regulations. Be prepared to discuss how these laws impact the role and how you can help ensure compliance within the organisation.
✨Communicate Effectively
Practice explaining complex security concepts in simple terms. You'll need to communicate with both technical and non-technical stakeholders, so showcasing your ability to bridge that gap will be crucial during the interview.
