Information Security Analyst

Information Security Analyst | Central London | Permanent | Up to £65,000 Per Annum Peaple Talent have partnered with an existing client who are a professional services organisation in the heart of London looking to recruit an Information Security Analyst on a full-time permanent basis. Our client is looking for a proactive and knowledgeable Information Security Analyst to strengthen their commitment to safeguarding sensitive data and defending their systems against evolving security threats. This role is central to their mission of continuously improving their cybersecurity resilience. In this position, you will be instrumental in protecting our client’s digital infrastructure. Key responsibilities include promoting security awareness among staff, evaluating and mitigating risks, enforcing appropriate security controls, and ensuring alignment with established security frameworks and industry regulations. Key Responsibilities: Develop, manage, and continuously improve ISMS documentation, ensuring alignment with governance frameworks and ISO27001:2022 standards. Respond to security-related inquiries, prepare management reports, and oversee third-party security due diligence and reviews. Support the expansion of ISO27001 certification across global entities, addressing local risks, processes, audits, and compliance requests. Promote a strong security culture through training, awareness initiatives, and cross-functional collaboration. Conduct security risk assessments, plan mitigation strategies, and assist with audits, incident investigation, and remediation efforts. Monitor emerging threats, technologies, and regulations, and provide informed recommendations to enhance the firm’s security posture. Key Experience Required: Our client is ideally looking for someone with demonstrable experience in a similar Information Security role, and/or possess professional certification in Information Security (e.g. CISSP, CISMP etc). Certified or formally trained in auditing ISO management systems, preferably ISO27001, though experience with other relevant frameworks is also valuable. Familiar with modern security technologies and protocols, such as Zscaler, either through practical use or academic exposure. Well-versed in security standards and certifications, including ISO27001, Cyber Essentials (Plus), ISO 22301, and NIST frameworks. Competent in the use and security aspects of Microsoft Office 365 applications and services. Solid grasp of IT security principles, common protective measures, and widely adopted industry best practices. Understanding of cloud-based security, with a particular focus on Microsoft Azure environments. Hands-on experience with security incident handling, including familiarity with response tools and procedures. Strong foundational knowledge of cybersecurity concepts and the technologies that underpin secure environments. If you are interested in this position, please apply on LinkedIn with an updated copy of your CV.