Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Ensure the security of information and data while collaborating with various teams.
- Company: Join WHSmith, a globally recognised brand with a rich history.
- Benefits: Enjoy hybrid working, flexible hours, and 25 days holiday plus your birthday off.
- Why this job: Make a real impact on data security in a dynamic and innovative environment.
- Qualifications: Experience in risk management and knowledge of security frameworks required.
- Other info: Be part of a diverse team committed to sustainability and community.
The predicted salary is between 48000 - 72000 £ per year.
At WHSmith our people are at the heart of everything we do. They are the ones that go the extra mile for our customers. The ones that enable our growth. That’s why our IT team works closely with stakeholders to develop and implement technology solutions.
As a Senior Information Security Analyst here you will be responsible for the operational and process assurance activities related to the availability, integrity and confidentiality of customer, business partner, employee and business information in compliance with the organisation's information security policies.
What you will be doing:
- Maintaining information security policies, processes, and standards in coordination with internal security and business stakeholders
- Managing and maintaining the information & data security roadmap, incident, and information requests
- Working directly with business partners to facilitate risk assessment and management, assessing, and communicating in line with relative policies and processes
- Facilitating the delivery of the information and data security education and awareness training framework across the business to ensure consistent application of policies and standards
- Maintaining technical solutions and procedural controls required to manage information security risk in line with the organisation's information security policies
- Facilitating regular access control, asset inventory reviews and remediation plans, in line with the access control policy and asset management policy
- Partnering with all technology groups (internal and external) as the data security representative on development projects to deliver secure and compliant security operational services
- Documenting evidence in support of annual PCI DSS and privacy impact assessments (DPIA)
What we are looking for:
- Experience in a combination of risk management, information security and IT roles (including Audit)
- Knowledge gained through working with common information security management frameworks (e.g. ISO27001, Cyber Essentials, NIST, PCI DSS, SOC2)
- A strong knowledge of Office 365, Teams, and SharePoint
- Knowledge of data protection regulations and requirements
- Experience of PCI-DSS controls and implementation
How we reward our teams:
- Hybrid Working Model from home and in the office
- 4pm Friday Finish
- Flexible Working
- 25 Days holiday, plus your Birthday off, plus Bank Holidays with an opportunity to buy extra days holiday
- Family Friendly Leave
- Competitive Pension Contribution
- Sharesave Scheme
- Annual Bonus based on company and personal performance
- Competitive Salary and Car Allowance
- Private Medical Insurance
- Staff Discount Card for stores and online
WHSmith have occupied our place in our customers' hearts for over two decades. You’ll find our stores and our family of brands in airports, hospitals, railway stations, on high streets and in shopping centres - as well as right across the world! We are an ambitious team that thrives on pace, collaboration and innovation resulting in a real entrepreneurial culture.
Celebrating 230 years, we’re proud to have grown and evolved into a globally recognised brand present in over 30 countries around the world, and we’re proud to be that air of familiarity people love and trust on their journey, both in life and through life. As a diverse group of over 12,000 colleagues, we are all on the same journey to a better business through our commitments to our planet, people and the communities we serve.
WHSmith are proud to be an inclusive employer, we want our colleagues to feel welcome, and free to be themselves with us.
Information Security - Senior Security Analyst employer: WH Smith PLC
Contact Detail:
WH Smith PLC Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Security - Senior Security Analyst
✨Tip Number 1
Network like a pro! Reach out to current or former employees at WHSmith on LinkedIn. A friendly chat can give you insider info and maybe even a referral, which can really boost your chances.
✨Tip Number 2
Prepare for the interview by knowing your stuff! Brush up on information security frameworks like ISO27001 and PCI DSS. Being able to discuss these confidently will show you're the real deal.
✨Tip Number 3
Show off your soft skills! WHSmith values collaboration and innovation, so be ready to share examples of how you've worked well in teams or solved problems creatively in past roles.
✨Tip Number 4
Apply through our website! It’s the best way to ensure your application gets seen. Plus, it shows you’re genuinely interested in being part of the WHSmith family.
We think you need these skills to ace Information Security - Senior Security Analyst
Some tips for your application 🫡
Tailor Your CV: Make sure your CV speaks directly to the role of Senior Security Analyst. Highlight your experience with risk management and information security frameworks like ISO27001 or PCI DSS. We want to see how your skills align with what we’re looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to tell us why you’re passionate about information security and how you can contribute to our team. Be sure to mention any relevant projects or experiences that showcase your expertise.
Showcase Your Technical Skills: Don’t forget to highlight your technical know-how, especially with tools like Office 365, Teams, and SharePoint. We love seeing candidates who are not just knowledgeable but also hands-on with the technologies we use every day.
Apply Through Our Website: We encourage you to apply through our website for a smoother application process. It’s the best way for us to receive your application and ensures you don’t miss out on any important updates from our team!
How to prepare for a job interview at WH Smith PLC
✨Know Your Security Frameworks
Make sure you brush up on your knowledge of information security management frameworks like ISO27001, Cyber Essentials, and PCI DSS. Be ready to discuss how you've applied these in past roles, as this will show your understanding of the standards WHSmith values.
✨Showcase Your Risk Management Skills
Prepare examples of how you've managed risk assessments and communicated findings effectively. Highlight any experience working with business partners to ensure compliance with security policies, as this is crucial for the role.
✨Familiarise Yourself with Tools
Since the job mentions Office 365, Teams, and SharePoint, make sure you're comfortable discussing how you've used these tools in a security context. Being able to relate your technical skills to the role will give you an edge.
✨Emphasise Communication and Training
WHSmith values education and awareness training, so be prepared to talk about how you've facilitated training sessions or created awareness around security policies in previous positions. This shows that you can contribute to their culture of security.
