At a Glance
- Tasks: Identify and mitigate security risks while leading incident response efforts.
- Company: Renowned professional services organisation based in Edinburgh.
- Benefits: Hybrid work model, training opportunities, and career progression.
- Other info: Engage with senior stakeholders and drive security awareness across the organisation.
- Why this job: Join a dynamic team and make a real impact on information security.
- Qualifications: Experience in information security and knowledge of ISO 27001 and Cyber Essentials Plus.
The predicted salary is between 50000 - 65000 £ per year.
Location: Edinburgh (Hybrid, 2 days a week onsite)
About the role
We have an excellent opportunity for a Senior Information Security Analyst to join a renowned professional services organisation in Edinburgh. This is a broad, rewarding position sitting at the heart of the business' security operations. You'll own risk identification and mitigation, lead on incident detection and response, work alongside external partners to stay ahead of emerging threats, and regularly meet with senior business stakeholders on security-related issues. Compliance with ISO 27001 and Cyber Essentials Plus sits at the core of the role, and you'll contribute to audits, supplier assurance, and the ongoing improvement of information security efforts.
Responsibilities
- Identifying and mitigating information security risks, maintaining an up-to-date risk register.
- Detecting, investigating and remediating security incidents in collaboration with external partners.
- Engaging with senior stakeholders and leadership to communicate complex risks in clear, accessible language.
- Supporting compliance with ISO 27001 and Cyber Essentials Plus, including internal and external audits.
- Responding to client security questionnaires and managing supplier assurance from a security perspective.
- Driving security awareness across the organisation through briefings, written content and simulated exercises.
Requirements
- A background in information security within the professional services or regulated industry.
- Hands‑on experience with recognised security frameworks and incident response.
- The confidence to engage on information security matters at senior stakeholder level.
- A strong understanding of governance, risk, and compliance with demonstrable knowledge of ISO 27001 and Cyber Essentials Plus.
- An information security‑related certification, such as CISSP or CISM.
This is an excellent opportunity to join an award-winning business that offers training, career progression, and personal development. For more information, please apply for an initial conversation and full job description.
Senior Information Security Analyst employer: RedRock Resourcing
Join a prestigious professional services organisation in Edinburgh, where you will be at the forefront of information security operations. With a strong emphasis on employee growth, this company offers extensive training and career progression opportunities, fostering a collaborative work culture that values innovation and security awareness. Enjoy the benefits of a hybrid working model, allowing for a balanced work-life dynamic while contributing to meaningful projects that protect vital information assets.
