You have experience working in information security, ideally with exposure to security operations, vulnerability management, or incident response. You are comfortable working with security alerts, understanding risk, and seeing issues through to resolution rather than simply escalating them.
You are organized, reliable, and take ownership of your work. You’re proactive, able to manage asks independently, and focused on seeing things through to completion. You’re equally comfortable working with technical detail but can also communicate clearly with both technical and non‑technical stakeholders.
You bring a practical, real‑world approach to security and are interested in how it can evolve within a growing organization. You are motivated by helping mature a security function and are naturally inclined to look for better ways of doing things.
You have an automation mindset and are interested in reducing manual effort through improved processes, repeatable workflows, and better use of tooling. You are comfortable thinking about how tasks can be streamlined or automated rather than simply executed repeatedly.
You are willing to learn, ask questions, and get involved across different areas of security, including tooling, processes, and operational workflows.
Most importantly, you are someone who wants to help build and improve how security operates within a growing organization, contributing to a more scalable and resilient security capability over time.
The role
This is a hands‑on Information Security Analyst role supporting the ongoing development of a growing security function. You’ll be part of a small team, contributing to day‑to‑day security operations, while also helping to improve and scale them over time.
- Support core security operations including security monitoring and alert triage, vulnerability management using Nessus, and coordination with our third‑party SOC (Rapid7).
- Ensure security events are appropriately investigated, tracked, and resolved in a consistent and timely manner.
- Support incident response activity, coordinating actions, tracking progress, and ensuring follow‑through across the wider business and external partners.
- Contribute to security assurance activities such as customer security questionnaires, audit support, and maintaining security documentation and processes.
- Identify opportunities to reduce manual effort, introduce more efficient workflows, and build repeatable, well‑documented processes.
- Use tooling capabilities and automation to reduce operational overhead and improve consistency where appropriate.
This is a role for someone who is comfortable working across multiple areas of security, takes ownership of their work, and is motivated by helping build and improve a security function within a growing organization.
EDI statement
As an equal opportunities’ employer, Heywood is committed to the equal treatment of all current and prospective employees and does not condone discrimination on the basis of age, disability, sex, sexual orientation, pregnancy and maternity, race or ethnicity, religion or belief, gender identity, or marriage and civil partnership. We aspire to have a diverse and inclusive workplace and strongly encourage suitably qualified applicants from a wide range of backgrounds to apply and join Heywood.
