Information Security Analyst ( ISO 27001 and ISO
Listed on 2026-07-19
-
IT/Tech
Information Security, Cybersecurity, Data Security, IT Business Analyst
Location: Greater London
Information Security Analyst ( ISO 27001 and ISO 27018 )
Alfa is looking to recruit an ISO 27001 and ISO 27018 Information Security Analyst to strengthen our Information Security and Audit/Compliance functions. Alfa Systems sits at the heart of some of the world's largest asset finance companies, across 26 countries which means information security isn't a back‑office function here, it's central to how our clients trust us with their business. If you want your work to genuinely matter, this is that kind of role.
Whatwe’ll do together
You’ll help maintain and continuously improve our Information Security Management System (ISMS), keeping our policies and procedures sharp and our compliance with ISO 27001 and ISO 27018 on point. You’ll get involved in SSAE 18 / ISAE 3402 SOC 1 Type 2 and SSAE 18 SOC 2 Type 2 assurance audits, spot opportunities to improve our security controls and processes, and contribute to how we analyse and mitigate risk.
On the audit and compliance side, you’ll actively participate in ISO 27001 and ISO 27018 audits, build clear documentation for regulatory and audit requirements, support internal and external audits and regulatory inspections, and compile the evidence that keeps it all standing up to scrutiny.
How we’ll work togetherYou’ll be part of a collaborative Information Security team, working closely with colleagues across the business to communicate complex requirements clearly, whether that’s to engineers, auditors or leadership.
The tools we’ll useTicketing systems (Jira preferred) and knowledge management platforms (Confluence preferred) will be part of your everyday toolkit, alongside the frameworks and standards that underpin everything we do, ISO 27001, ISO 27018, and an awareness of others like NIST and CSA STAR.
What you’ll bring to the team- A Bachelor's degree from a top university,
- A solid understanding of information security principles and practice, and hands‑on experience with ISO 27001 compliance methodologies and audit procedures.
- You’re analytical, a strong problem‑solver, and detail‑oriented with excellent organisational skills.
- You write clear documentation and reports, and you can translate complex requirements for stakeholders at every level.
- You’ll have at least 2 years’ experience in a related role.
- Experience in a regulated industry, familiarity with other information security frameworks and assurance reports, and exposure to Jira and Confluence will all give you a head start – but they’re not deal breakers.
- Flexible hybrid working
- 25 days’ annual leave plus bank holidays and flexible cultural days
- Pension contribution match up to 6%
- Private health insurance and access to a private GP
- Enhanced maternity, paternity and adoption leave with family‑friendly policies
- Income protection
- Life, disability and worldwide travel insurance
- Interest‑free loans of up to £10,000 after probation
- Wellhub access to gyms, classes and wellbeing apps
- Support pursuing membership of professional bodies
- 5 days per year for conferences or training
- 3 paid days of volunteering per year
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search: