Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Support governance, lead audits, and enhance security resilience in a dynamic law firm.
- Company: Join a forward-thinking law firm on a major cyber transformation journey.
- Benefits: Enjoy hybrid working, competitive salary, and strong UK benefits.
- Why this job: Be part of a strategic cyber investment with a focus on innovation and security.
- Qualifications: Experience in information security; knowledge of ISO 27001 or similar frameworks is essential.
- Other info: Certifications like CISMP or CISSP are a bonus; flexible working options available.
The predicted salary is between 44000 - 52000 £ per year.
Hybrid (London, 3 Days Onsite + Flexible Working) | £55,000–£65,000 + Strong UK Benefits | Strategic Cyber Investment
Be part of a forward-thinking law firm undergoing a major cyber transformation. As an Information Security Analyst, you’ll support governance, lead audits, and build security resilience across multiple jurisdictions.
What You’ll Be Doing
- Maintain and improve the ISMS, including policies, procedures, and guidelines
- Ensure ongoing ISO 27001:2022 alignment across UK and international offices
- Conduct internal audits, lead remediation efforts, and support third-party reviews
- Run supplier due diligence and respond to client risk assessments
- Investigate and escalate incidents, contributing to ongoing threat awareness
- Deliver awareness training and drive adoption of secure behaviours
What You’ll Bring
- Experience in information security or compliance-based roles
- Knowledge of ISO 27001, Cyber Essentials, NIST or similar frameworks
- Ability to communicate and collaborate across business functions
- Comfortable working in cloud and Microsoft 365 environments
- Certifications like CISMP, CISSP or ISO 27001 Lead Auditor are a bonus
InfoSec Analyst employer: Locke and McCloud
Contact Detail:
Locke and McCloud Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land InfoSec Analyst
✨Tip Number 1
Familiarise yourself with ISO 27001:2022 and other relevant frameworks. Understanding these standards will not only help you in interviews but also demonstrate your commitment to the role and the importance of compliance in information security.
✨Tip Number 2
Network with professionals in the information security field, especially those who work in law firms or similar environments. Attend industry events or webinars to gain insights and make connections that could lead to referrals or recommendations.
✨Tip Number 3
Stay updated on the latest trends and threats in cybersecurity. Being knowledgeable about current issues can help you engage in meaningful conversations during interviews and showcase your proactive approach to security.
✨Tip Number 4
Prepare to discuss specific examples of how you've contributed to security improvements in previous roles. Highlighting your hands-on experience with audits, incident response, or training initiatives will set you apart from other candidates.
We think you need these skills to ace InfoSec Analyst
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in information security and compliance. Emphasise your knowledge of ISO 27001 and any certifications you hold, such as CISMP or CISSP.
Craft a Compelling Cover Letter: Write a cover letter that showcases your passion for information security and your understanding of the role. Mention specific experiences that demonstrate your ability to maintain ISMS and conduct audits.
Highlight Relevant Skills: In your application, clearly outline your skills related to governance, risk assessments, and incident investigation. Use examples to illustrate how you've contributed to security resilience in previous roles.
Showcase Continuous Learning: Mention any ongoing training or professional development in the field of information security. This could include courses on Cyber Essentials or NIST frameworks, showing your commitment to staying updated in the industry.
How to prepare for a job interview at Locke and McCloud
✨Showcase Your Knowledge of ISO Standards
Make sure to brush up on ISO 27001 and other relevant frameworks. Be prepared to discuss how you've applied these standards in previous roles, as this will demonstrate your expertise and understanding of the requirements for the position.
✨Prepare for Scenario-Based Questions
Expect questions that ask you to describe how you would handle specific security incidents or audits. Think through past experiences where you successfully managed similar situations and be ready to share those examples.
✨Highlight Your Communication Skills
As an InfoSec Analyst, you'll need to collaborate with various teams. Be ready to explain how you've effectively communicated complex security concepts to non-technical stakeholders in the past.
✨Demonstrate Your Continuous Learning
The field of information security is always evolving. Mention any recent certifications or training you've completed, and express your commitment to staying updated on the latest trends and threats in cybersecurity.
