Data & Information Security Analyst FTC

Ryder Reid
Leeds, United Kingdom
18 days ago

Role details

Contract type
Temporary contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Intermediate
Compensation
£ 56K

Job location

Leeds, United Kingdom

Tech stack

Software System Penetration Testing
Computer Security
Digital Assets
Security Information and Event Management
Vulnerability Analysis

Job description

An established, full-service organisation with a national footprint is seeking a Data & Information Security Analyst to join its Compliance and IT functions on an 18-month fixed-term contract. This is a key role responsible for protecting the firm's digital assets, maintaining security accreditations, and supporting a strong culture of information security across the business., Working across both Compliance and IT, the successful candidate will play a central part in monitoring, analysing and escalating security incidents, as well as implementing and maintaining controls aligned to ISO 27001:2022 and Cyber Essentials. You will collaborate closely with internal teams and external partners to ensure the organisation's systems, data and processes remain secure, resilient and compliant., * Monitor networks and systems for suspicious activity and potential breaches.

  • Investigate and escalate security incidents, ensuring timely and effective responses.
  • Document incidents with clear analysis and remediation actions.
  • Conduct vulnerability assessments and monthly endpoint security checks.
  • Coordinate penetration testing (physical and black-box) to identify risks.
  • Work with IT teams to ensure remediation actions are implemented.
  • Develop and maintain security policies, procedures and standards.
  • Deliver security awareness training and promote a strong security culture.
  • Stay informed on emerging technologies and recommend improvements.
  • Support data gathering for Data Subject Access Requests.
  • Conduct internal audits aligned to ISO 27001 requirements.

Requirements

  • Strong knowledge of ISO 27001:2022.
  • 3+ years' experience in a similar role with a relevant degree, or 5+ years' industry experience.
  • Experience within the legal or professional services sector.
  • Relevant certifications such as CISSP, CISM or CompTIA Security+.
  • Knowledge of NIST, UK GDPR and Cyber Essentials.
  • Proficiency with security tools (XDR, EDR, SIEM).
  • Strong communication and teamwork skills.
  • Ability to prioritise workloads and meet deadlines.
  • Proactive, service-oriented approach with enthusiasm for continuous improvement.

Apply for this position