Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Support global information security compliance and enhance security frameworks.
- Company: Dynamic company focused on maintaining a strong security culture.
- Benefits: Competitive salary, professional development, and flexible working environment.
- Why this job: Make a real impact in global security initiatives and compliance.
- Qualifications: 3+ years in information security compliance and strong knowledge of security frameworks.
- Other info: Opportunity for international travel and collaboration with global teams.
The predicted salary is between 36000 - 60000 £ per year.
Location: Worcester (hybrid 3 days in). First six months in office. This role does not offer sponsorship so you need full right to work within the UK.
About the Role
We are seeking an Information Security Compliance Analyst to support the execution and enhancement of a global information security compliance programme. This role ensures that operations across multiple business units adhere to internal policies, international regulations, and recognised industry frameworks. It offers the opportunity to work cross-functionally with stakeholders worldwide and contribute to maintaining a strong security and compliance culture.
Key Responsibilities
- Support the design, implementation, and continuous improvement of the information security compliance framework (e.g. ISO, NIST, SOC 2, CMMC, HITRUST).
- Conduct and coordinate internal audits, evaluate security controls, and document findings with recommended actions.
- Track remediation activities for audit findings and compliance gaps in collaboration with IT and business stakeholders.
- Monitor and support adherence to global data protection and privacy regulations such as GDPR, CCPA, and LGPD.
- Assist in maintaining security policies, standards, and procedures, ensuring audit readiness and compliance reporting.
- Contribute to third-party risk management reviews and due diligence activities.
- Collaborate with global teams to drive best practice and support security awareness initiatives.
- International travel will be part of this role.
Skills and Experience
- Bachelor's degree in Information Security, Risk Management, Computer Science, or related field.
- 3+ years' experience in information security compliance, auditing, or IT risk management.
- Strong knowledge of security frameworks (ISO, NIST, SOC 2, COBIT) and data protection laws (GDPR, CCPA, etc).
- Experience conducting security audits and assessments with strong analytical and organisational skills.
- Ability to communicate effectively with technical and non-technical stakeholders across multiple regions.
- Professional certifications such as CISA, CISSP, ISO Lead Auditor, or CRISC are advantageous.
What's in it for You?
- Competitive salary and benefits package.
- Opportunity to work in a global environment with exposure to diverse regulatory landscapes.
- Involvement in high-impact security and compliance initiatives.
- Support for professional development, including security training and certifications.
- Flexible and collaborative working environment with scope to make a meaningful impact.
Information Security Analyst in Worcester employer: Hewett Recruitment
Contact Detail:
Hewett Recruitment Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Security Analyst in Worcester
✨Tip Number 1
Network like a pro! Reach out to folks in the industry on LinkedIn or at local meetups. We all know that sometimes it’s not just what you know, but who you know that can help you land that dream job.
✨Tip Number 2
Prepare for those interviews by researching the company and its security practices. We want you to show off your knowledge of frameworks like ISO and NIST, so brush up on those details and be ready to discuss how you can contribute!
✨Tip Number 3
Practice makes perfect! Do mock interviews with friends or use online platforms to get comfortable answering common questions. We want you to feel confident when discussing your experience in compliance and risk management.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen. Plus, we love seeing candidates who are proactive about their job search!
We think you need these skills to ace Information Security Analyst in Worcester
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Information Security Analyst role. Highlight your experience with security frameworks and compliance, and don’t forget to mention any relevant certifications you have. We want to see how your skills match what we’re looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you’re passionate about information security and how your background makes you a great fit for our team. Keep it concise but engaging – we love a good story!
Showcase Your Achievements: When detailing your experience, focus on specific achievements rather than just listing duties. Did you improve compliance rates or streamline an audit process? We want to know how you made an impact in your previous roles!
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way to ensure your application gets into the right hands. Plus, it shows us you’re keen on joining our team at StudySmarter!
How to prepare for a job interview at Hewett Recruitment
✨Know Your Frameworks
Make sure you brush up on the key security frameworks mentioned in the job description, like ISO, NIST, and SOC 2. Being able to discuss these frameworks confidently will show that you understand the compliance landscape and can contribute effectively.
✨Prepare for Scenario Questions
Expect questions that ask how you would handle specific compliance scenarios or audits. Think of examples from your past experience where you successfully identified and resolved compliance issues, as this will demonstrate your practical knowledge.
✨Show Your Communication Skills
Since you'll be working with both technical and non-technical stakeholders, practice explaining complex security concepts in simple terms. This will highlight your ability to bridge the gap between different teams and ensure everyone is on the same page.
✨Research the Company Culture
Take some time to understand the company's values and culture, especially regarding security and compliance. Tailoring your answers to align with their mission will show that you're not just a fit for the role, but also for the company as a whole.
