Information Security Analyst in Cheltenham

Information Security Analyst in Cheltenham

Cheltenham Full-Time 40000 - 50000 £ / year (est.) No working from home possible
YunoJuno

At a Glance

  • Tasks: Assess vendors and software for security compliance and support the GRC team.
  • Company: Join a forward-thinking organisation launching innovative tech solutions.
  • Benefits: Competitive pay, flexible working, and valuable experience in cybersecurity.
  • Other info: Dynamic role with potential for growth in the cybersecurity field.
  • Why this job: Make a real difference in enhancing user security and experience.
  • Qualifications: 2+ years in GRC or Information Security with knowledge of key frameworks.

The predicted salary is between 40000 - 50000 £ per year.

Job Title

Information Security Analyst / GRC Analyst

Start Date

ASAP

Duration

3–6 month contract (likely need the full 6 months)

Role Summary

The organisation is about to launch refreshed Modern Device Experience laptops to all colleagues.

To support enhanced user experience, approved software and apps will be prepackaged for download.

Working as part of the wider Group Cyber Security Team as an Information Security GRC Analyst, you will help assess vendors, software and applications against third‑party lifecycle frameworks, information security policies, standards and benchmarks.

In addition, you will support the wider GRC teams with BAU activities and support tickets.

Key Responsibilities

  • Assess vendors, software and applications against third‑party lifecycle frameworks, information security policies, standards and benchmarks.
  • Conduct customer and vendor security assessments.
  • Support the assessment of risks and third parties.
  • Assist with data protection impact assessments.
  • Escalate risks and non‑compliance appropriately.
  • Support the wider GRC teams with BAU activities and support tickets.
  • Required Experience
  • 2+ years' experience working in a GRC or Information Security role.
  • Active involvement in customer and vendor security assessments.
  • Good working knowledge of key frameworks, such as NIST CSF and ISO 27001.
  • Experience of data protection impact assessments, assessing risk and third parties.
  • Ability to work independently to agreed processes and elevate risks and non‑compliance appropriately.
  • #J-18808-Ljbffr
YunoJuno

Contact Details:

YunoJuno Recruitment Team

We think you need these skills to ace Information Security Analyst in Cheltenham

Information Security
GRC (Governance, Risk Management, and Compliance)
Vendor Security Assessments
Third-Party Lifecycle Frameworks
NIST CSF
ISO 27001
Data Protection Impact Assessments