At a Glance
- Tasks: Join our IT team as an Information Security Analyst, managing security policies and incident responses.
- Company: We are a dynamic organisation focused on enhancing information security in a fast-paced environment.
- Benefits: Enjoy 25 holidays plus bank holidays, increasing to 28 after 5 years, with onsite parking and tech perks.
- Why this job: This role offers autonomy, responsibility, and the chance to make a real impact in cybersecurity.
- Qualifications: Hands-on experience in information security and knowledge of relevant standards like Cyber Essentials and ISO 27001 required.
- Other info: Be part of a supportive IT team that values work-life balance and encourages personal growth.
The predicted salary is between 36000 - 60000 £ per year.
We are looking for an Information Security Analyst to join our existing IT team. Working with the Head of IT and a current IT team of 6, you will provide advice and guidance on information security and further develop security policies and processes across the entire infrastructure estate. This role shall be responsible for supporting and maintaining information-driven solutions within a fast-paced and challenging environment. As a member of the IT team, you will review all aspects of the information systems environment and its components. The successful candidate will be required to proactively improve and provide advice and guidance on information security matters. You will feel comfortable in a role with autonomy, being the sole information security employee within the group, enjoying responsibility and working closely with the IT team. We believe this is an excellent opportunity for candidates who have a strong understanding of IT infrastructure and information security and enjoy fast-paced environments.
Key Duties and Responsibilities:
- Assist with information security incident management and response activities
- General day-to-day support on managing and responding to security alerts from systems and end users
- Perform daily, weekly, and monthly security checks, reconciliation, compliance checks, and investigate exceptions
- Fulfil information security requirement questionnaires and support the process
- Identify security risks
- Report security risks to the Head of IT and the board
- Create security policies, processes, and procedures
- Compile a list of technical controls to strengthen the airport's security capabilities and resilience to continued cyber threats
- Be aware of information security risks, mitigations, and opportunities to strengthen resilience to cyber-attacks and information security incidents
- Implementation of monitoring and reporting systems and applications
- Document user requirements and technical training guides
- Test information security disaster recovery capabilities, identifying issues and working with the organisation to drive continual improvements
Qualifications:
Technical Requirements:
- Hands-on experience of information security
- Exposure to information security standards including but not limited to Cyber Essentials, ISO 27001, ISO 27002, Data Protection Act, and the General Data Protection Regulation
- Good understanding of security testing principles, including experience of vulnerability scanning, identifying, resolving, and reporting risks
- Documentation creation
- Detailed Knowledge of:
- Threat analysis
- Reporting
- Security incident response processes, procedures, and best practices
- Disaster recovery and business continuity principles
- Event and log analysis
Core Behavioural Skills:
- Confident individual with good interpersonal skills, able to deal with people at all levels and communicate to users in a clear, non-technical language
- Team player
- Analytically minded, able to break down and understand information
- Must be comfortable working in a fast-moving, dynamic environment
- Strongly customer-focused, used to providing support to demanding users
- Good organisational skills, used to managing and prioritising own workload
- Ability to report on progress, timescales, outstanding and completed activities
Additional Information: The IT team size is compact; therefore, there may be a shared responsibility within the team to offer support to each other. They provide a great place to work, where each person has the opportunity and voice to affect change. They enjoy a healthy, productive, and flexible working environment that respects work-life balance.
Information security analyst - REF 1069 employer: Interface Recruitment UK
Contact Detail:
Interface Recruitment UK Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information security analyst - REF 1069
✨Tip Number 1
Familiarise yourself with the specific information security standards mentioned in the job description, such as Cyber Essentials and ISO 27001. Being able to discuss these frameworks confidently during your interview will demonstrate your knowledge and commitment to the role.
✨Tip Number 2
Showcase your hands-on experience with security incident management and response. Prepare examples of past incidents you've managed or contributed to, highlighting your analytical skills and ability to work under pressure in a fast-paced environment.
✨Tip Number 3
Emphasise your teamwork and communication skills, especially your ability to explain technical concepts in a non-technical manner. This is crucial for working closely with the IT team and supporting users at all levels.
✨Tip Number 4
Research the company culture and values to align your responses with their expectations. Highlight your adaptability and customer-focused approach, as these traits are essential for thriving in their dynamic work environment.
We think you need these skills to ace Information security analyst - REF 1069
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in information security and IT infrastructure. Use keywords from the job description, such as 'security policies', 'incident management', and 'vulnerability scanning' to catch the employer's attention.
Craft a Strong Cover Letter: In your cover letter, express your enthusiasm for the role and the company. Mention specific experiences that demonstrate your ability to work in a fast-paced environment and your understanding of security standards like Cyber Essentials and ISO 27001.
Showcase Relevant Skills: Clearly outline your technical skills related to information security, such as threat analysis and incident response processes. Provide examples of how you've successfully managed security risks or improved security measures in previous roles.
Proofread Your Application: Before submitting your application, carefully proofread all documents for spelling and grammatical errors. A polished application reflects your attention to detail, which is crucial in the field of information security.
How to prepare for a job interview at Interface Recruitment UK
✨Understand the Role
Make sure you have a solid grasp of what an Information Security Analyst does. Familiarise yourself with key responsibilities like incident management, security checks, and policy creation. This will help you answer questions confidently and demonstrate your enthusiasm for the role.
✨Showcase Your Technical Knowledge
Be prepared to discuss your hands-on experience with information security standards such as Cyber Essentials and ISO 27001. Highlight any relevant projects or situations where you've applied your knowledge of security testing principles and incident response processes.
✨Demonstrate Problem-Solving Skills
Expect scenario-based questions that assess your analytical thinking and problem-solving abilities. Prepare examples of how you've identified and mitigated security risks in the past, showcasing your ability to work under pressure in a fast-paced environment.
✨Emphasise Communication Skills
As you'll be working closely with the IT team and reporting to the Head of IT, it's crucial to convey your interpersonal skills. Practice explaining complex security concepts in simple terms, as this will show your ability to communicate effectively with both technical and non-technical stakeholders.