Information Security Analyst

Information Security Analyst

Up to £50,000 + benefits

Hereford Hybrid

Permanent Full-time

We are looking for an experienced Information Security Analyst to join our client who will play a key role in driving compliance, governance, and continual improvement across key security frameworks including ISO 27001, PCI DSS, and Cyber Essentials Plus.

Key Responsibilities:

Lead on the operation and continual improvement of the Information Security Management System (ISMS)

Coordinate internal and external audit readiness for ISO 27001, PCI DSS, and Cyber Essentials Plus

Draft and update information security policies, procedures, and technical standards

Work with procurement and commercial teams to support supplier assurance and risk assessment

Contribute to tender responses and bid processes, ensuring security and compliance requirements are met

Promote good security practices and raise awareness across departments

Act as an escalation point and day-to-day contact for other team members

Stay up to date with changes in legislation and standards relating to information and cyber security

Key Skills & Experience:

Essential:

Background in IT, Cyber Security, Information Systems, or a related discipline

Strong working knowledge of ISO 27001, PCI DSS, and Cyber Essentials Plus

Proven ability to support and prepare for audits, including evidence collation and audit readiness

Excellent attention to detail and ability to produce high-quality documentation

Strong stakeholder communication skills, both written and verbal

Ability to build effective working relationships and influence at all levels

Comfortable working independently and proactively across teams

Desirable:

Experience in supplier risk management and/or tender processes

ISO 27001 Lead Auditor/Implementer, PCIP, CISM, CompTIA Security+, or CISMP certification

What you get in return:

Up to £50,000 per annum + benefits

Hybrid working (3 to 4 days in office)

Opportunity to lead and mentor within a growing security team

Professional development and training support

This company is an equal opportunity employer and values diversity. We do not discriminate on the basis of race, religion, colour, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.

Interested?

Please submit your CV to Meg Kewley at DCS Recruitment via the link provided.

DCS Recruitment and all associated companies are committed to creating a working environment where diversity is celebrated and everyone is treated fairly, regardless of gender, gender identity, disability, ethnic origin, religion or belief, sexual orientation, marital or transgender status, age, or nationality