Information Security Risk Analyst

In this role, you will support the security oversight of international technology programmes, ensuring security requirements are met and aligned with global information security policies and standards. **This is not a technical role for a Security Engineer but more aligned with someone that has worked as a governance, risk and compliance analyst for a large company working across many different areas of the business.

You'll play a key part in onboarding and monitoring infrastructure, managing remediation of vulnerabilities, and driving a strong culture of risk awareness and compliance across the business., * Manage the security aspects of international technology projects, ensuring risks are identified and mitigated effectively

• Build a strong understanding of the international infrastructure landscape and support key security initiatives
• Prioritise high-risk queries and tasks, ensuring they are assessed through appropriate risk frameworks
• Document environmental risk and provide regular reporting on active security initiatives
• Perform security reviews for high-impact and high-risk systems when required
• Support onboarding and monitoring of infrastructure to ensure asset visibility and protection
• Review, communicate, and manage remediation of security findings and vulnerabilities
• Ensure a risk-based approach to IT security is embedded across business and technology teams
• Align best practices with global information security standards and governance frameworks
• Assist with incident coordination, reporting, and response activities
• Support third-party security compliance processes in collaboration with internal stakeholders - Vendor/supplier risk assessments.
• Work closely with domestic security teams to define mitigating controls and support risk assessments
• Ensure technology and security practices align with privacy regulations including GDPR
• Help document regional risk management processes and promote security awareness across teams, We believe in caring for our candidates and working closely with our clients, so we will only pair you with opportunities for which we believe that you are truly the right fit. You will receive our support and utmost respect throughout the process, and we will always be happy to answer any questions that you have about the hiring procedure.

Do you have experience in Time management?, Do you have a Bachelor's degree?, To be successful in this role, you will ideally bring:

• 4+ years' experience in Information Security, Risk Management, Audit, or Compliance monitoring
• Strong knowledge of conducting risk assessments using best-practice methodologies
• Excellent stakeholder management skills, with the ability to build credibility across technical and non-technical teams
• Familiarity with vulnerability and security tooling such as Tenable, Qualys, CrowdStrike, Prisma
• Working knowledge of security frameworks and standards (ISO 2700x, SOC 2, NIST, PCI, etc.)
• Experience interpreting risk signals from multiple sources to form clear recommendations
• Strong understanding of cyber security best practices in enterprise environments
• Exposure to regulatory compliance frameworks, including GDPR
• A good understanding of cloud infrastructure engineering and architecture, * BA/BS in Computer Science, Information Security, or a related field
• Working towards certifications such as:

• CISA, CISM, CRISC
• ISO27001 LA/LI
• CISSP, CCSP, Cloud+, * Highly organised with strong time management skills

• Confident managing multiple priorities in a fast-paced environment
• Excellent written and verbal communication, including documentation and reporting
• Collaborative approach with the ability to influence across business and technology teams

We are PCR Digital, a small and personal London recruitment agency that specialises in technology roles across digital, broadcast, Video on Demand, and enterprise IT. Our clients range from internationally recognised, global organisations to growing start-ups, and the opportunities that we have are dynamic and constantly changing within our sectors.