Information Security GRC Analyst - Leeds - £55,000-£70,000
About the Role: We are looking for a detail-oriented Information Security Analyst with specialized experience in ISO27001 to join our security team. In this role, you will play a key part in ensuring our clients meet ISO27001 standards, helping to safeguard their information assets through rigorous analysis and implementation of security controls.
Key Responsibilities:
- Assist in the implementation and management of ISO27001 certification projects, ensuring all requirements are met.
- Conduct regular risk assessments and internal audits to identify and mitigate security vulnerabilities.
- Monitor and maintain compliance with ISO27001 standards across various departments and projects.
- Support the development and refinement of security policies, procedures, and documentation in line with ISO27001.
- Provide ongoing monitoring and reporting on the effectiveness of the Information Security Management System (ISMS).
- Collaborate with cross-functional teams to implement and maintain security controls that align with ISO27001.
- Assist in preparing for external audits and ensuring continuous compliance with ISO27001 standards.
About You:
- Proven experience working with ISO27001 standards and implementing ISMS frameworks.
- Strong analytical skills with the ability to identify security risks and recommend mitigation strategies.
- Solid understanding of information security principles, including risk management and security governance.
- Excellent communication skills, with the ability to present findings and recommendations clearly to both technical and non-technical stakeholders.
- Relevant certifications (e.g., ISO27001 Lead Implementer, CISSP, CISM) are a plus.
- Detail-oriented with the ability to manage multiple tasks and priorities in a fast-paced environment.
What We Offer:
- Opportunity to work with a dynamic and innovative team dedicated to security excellence.
- Competitive salary and benefits package.
- Professional development opportunities and support for obtaining relevant certifications.
- Flexible working arrangements, including remote work options.
Locke & McCloud are the UK’s leading cyber security & information security staffing company – through having a sole focus on the cyber & information security space we have been able to foster solid relationships with some of the UK’s most exciting cyber security consultancies & end users. Our focus on the information security space allows us to be able to help you find the most exciting.