Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Ensure the security of information and data while collaborating with various teams.
- Company: Join WHSmith, a globally recognised brand with a rich history and inclusive culture.
- Benefits: Enjoy hybrid working, flexible hours, 25 days holiday, and private medical insurance.
- Why this job: Make a real impact on data security in a dynamic and innovative environment.
- Qualifications: Experience in risk management and knowledge of information security frameworks required.
- Other info: Be part of a diverse team committed to sustainability and community.
The predicted salary is between 28800 - 48000 £ per year.
At WHSmith our people are at the heart of everything we do. They are the ones that go the extra mile for our customers and enable our growth. That’s why our IT team works closely with stakeholders to develop and implement technology solutions.
Responsibilities
- As an Information Security Analyst you will be responsible for the operational and process assurance activities related to the availability, integrity and confidentiality of customer, business partner, employee and business information in compliance with the organisation’s information security policies.
- Maintaining information security policies, processes and standards in coordination with internal security and business stakeholders.
- Managing and maintaining the information & data security roadmap, incident and information requests.
- Working directly with business partners to facilitate risk assessment and management, assessing and communicating in line with relative policies and processes.
- Facilitating the delivery of the information and data security education and awareness training framework across the business to ensure consistent application of policies and standards.
- Maintaining technical solutions and procedural controls required to manage information security risk in line with the organisation’s information security policies.
- Facilitating regular access control, asset inventory reviews and remediation plans, in line with the access control policy and asset management policy.
- Partnering with all technology groups (internal and external) as the data security representative on development projects to deliver secure and compliant security operational services.
- Documenting evidence in support of annual PCI DSS and privacy impact assessments (DPIA).
Qualifications
- Experience in a combination of risk management, information security and IT roles (including Audit).
- Knowledge gained through working with common information security management frameworks (e.g., ISO27001, Cyber Essentials, NIST, PCI DSS, SOC2).
- A strong knowledge of Office 365, Teams, and SharePoint.
- Knowledge of data protection regulations and requirements.
- Experience with PCI‑DSS controls and implementation.
Benefits
- Hybrid working model from home and in the office.
- 4 pm Friday finish.
- Flexible working.
- 25 days holiday, plus your birthday off, plus bank holidays with an opportunity to buy extra days holiday.
- Family friendly leave.
- Competitive pension contribution.
- Share save scheme.
- Annual bonus based on company and personal performance.
- Competitive salary and car allowance.
- Private medical insurance.
- Staff discount card for stores and online.
WHSmith have occupied our place in our customers’ hearts for over two decades. You’ll find our stores and our family of brands in airports, hospitals, railway stations, on high streets and in shopping centres – as well as right across the world! We are an ambitious team that thrives on pace, collaboration and innovation resulting in a real entrepreneurial culture. Celebrating 230 years, we’re proud to have grown and evolved into a globally recognised brand present in over 30 countries around the world, and we’re proud to be that air of familiarity people love and trust on their journey, both in life and through life. As a diverse group of over 12,000 colleagues, we are all on the same journey to a better business through our commitments to our planet, people and the communities we serve. WHSmith are proud to be an inclusive employer, we want our colleagues to feel welcome, and free to be themselves with us.
Information Security - Security Analyst employer: WH Smith PLC
Contact Detail:
WH Smith PLC Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Security - Security Analyst
✨Tip Number 1
Network like a pro! Reach out to current employees at WHSmith on LinkedIn or through mutual connections. A friendly chat can give you insider info and might just get your foot in the door.
✨Tip Number 2
Prepare for the interview by brushing up on your knowledge of information security frameworks like ISO27001 and PCI DSS. Show us you know your stuff, and we’ll be impressed!
✨Tip Number 3
Don’t forget to showcase your soft skills! As an Information Security Analyst, communication is key. Be ready to discuss how you’ve effectively collaborated with teams in the past.
✨Tip Number 4
Apply through our website! It’s the best way to ensure your application gets seen. Plus, it shows us you’re genuinely interested in being part of the WHSmith family.
We think you need these skills to ace Information Security - Security Analyst
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Information Security Analyst role. Highlight your experience in risk management and information security, and don’t forget to mention any relevant frameworks you’ve worked with, like ISO27001 or PCI DSS.
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you’re passionate about information security and how your skills align with WHSmith’s values. Keep it concise but impactful!
Showcase Your Technical Skills: Don’t shy away from showcasing your technical skills, especially with tools like Office 365, Teams, and SharePoint. Mention any specific projects where you’ve implemented security measures or managed data protection.
Apply Through Our Website: We encourage you to apply through our website for a smoother application process. It’s the best way for us to receive your application and get you on our radar quickly!
How to prepare for a job interview at WH Smith PLC
✨Know Your Security Frameworks
Make sure you brush up on your knowledge of information security management frameworks like ISO27001, Cyber Essentials, and PCI DSS. Be ready to discuss how you've applied these in past roles or how you would implement them at WHSmith.
✨Showcase Your Risk Management Skills
Prepare examples that highlight your experience in risk assessment and management. Think about specific situations where you identified risks and how you communicated them effectively to stakeholders.
✨Familiarise Yourself with Tools
Since the role involves working with Office 365, Teams, and SharePoint, make sure you're comfortable discussing how you've used these tools in previous positions. Highlight any specific projects where these tools played a key role in maintaining information security.
✨Emphasise Communication and Training
As an Information Security Analyst, you'll need to facilitate training and awareness. Prepare to talk about how you've successfully delivered training or communicated complex security concepts to non-technical audiences in the past.
