Information Security Analyst (Cybersecurity)

TL;DR

Information Security Analyst (Cybersecurity): Ensuring compliance with information security frameworks and contributing to Cybersecurity Operations Center (CSOC) activities with an accent on internal audits, regulatory compliance, and readiness for external audits. Focus on identifying control deficiencies, recommending remediation actions, and supporting incident response efforts.

Location: Hybrid (Southampton, United Kingdom) with 3 days of remote work per week.

Company

hirify.global software products are used by 25,000+ global businesses to deliver extraordinary customer experiences, fight financial crime and ensure public safety.

What you will do

• Conduct internal audits to evaluate IT controls, compliance, and risk management processes.
• Assist in preparing for external audits by scoping evidence and supporting internal control owners.
• Facilitate gap assessments and audit readiness evaluations for frameworks like ISO 27001, GDPR, and DORA.
• Monitor updates to Cyber Essentials, ISO, and regulatory frameworks to ensure internal alignment.
• Use tools such as Rapid7 InsightIDR or other SIEM solutions to assist with security monitoring and incident detection.
• Participate in incident response efforts, documenting security incidents and assisting in containment and recovery actions.

Requirements

• Strong expertise in audit and compliance frameworks, including ISO 27001, ISO 27701, ISO 42001, GDPR, DORA, Cyber Essentials, and Cyber Essentials Plus.
• Familiarity with CSOC tools such as Rapid7 InsightIDR or other SIEM solutions.
• Hands-on experience in internal and external audits, compliance assessments, and process improvement.
• Basic understanding of incident response frameworks and cybersecurity best practices.
• Exceptional analytical, organizational, and communication skills.
• Commitment to continuous learning and professional development in audit, compliance, and security.

hirify.global-to-have">hirify.global to have

• A Master’s degree in Cybersecurity, Risk Management, or related fields.
• Certifications such as CISA, CISM, CISSP, ISO 27001 Lead Auditor/Implementer, Cyber Essentials Assessor, or GIAC certifications (e.g., GCIH or GSEC).

Culture & Benefits

• Join a fast-paced, collaborative, and creative environment.
• Opportunity to learn and grow with endless internal career opportunities.
• Work according to the hirify.global-FLEX hybrid model: 2 days working from the office and 3 days of remote work each week.