Information Security Analyst
Listed on 2026-07-15
-
IT/Tech
Cybersecurity, Information Security
Join us at Bromford Flagship Live West and play a key role in protecting the systems, data and services that support thousands of people and communities. As an Information Security Analyst, you'll work across the organisation to identify and manage security risks, strengthen compliance, influence positive security behaviours and help shape a resilient and secure future. This is an exciting opportunity to develop your expertise in a collaborative environment while making a meaningful impact.
This role offers excellent exposure across the information security landscape, including governance, risk management, compliance, assurance, vulnerability management and incident response. You'll work alongside experienced security professionals, build relationships with stakeholders across the business, and have the opportunity to develop your technical and professional skills while contributing to an organisation that puts people at the heart of everything it does.
LocationNorwich, Tewkesbury or Exeter (agile working available)
What You’ll Be Doing- Support the delivery of Bromford Flagship Live West’s information security strategy by helping to identify, assess and monitor security risks across systems, projects, suppliers and business processes.
- Work closely with colleagues and external partners to review third‑party security arrangements, gather evidence and assess security controls, ensuring risks are understood and managed appropriately.
- Assist with maintaining compliance against recognised security frameworks including Cyber Essentials, CIS Controls, ISO 27001 and NIST, while tracking improvement activities and supporting governance processes.
- Contribute to security awareness initiatives across the organisation, providing clear and practical guidance that helps colleagues understand their security responsibilities and promotes a positive security culture.
- Collaborate with security specialists on incident response, vulnerability management and assurance activities, while staying informed about emerging cyber threats and identifying opportunities for continuous improvement.
- A professional with a strong understanding of information security principles, risk management and governance, risk and compliance (GRC) practices, with the ability to apply these in a practical business environment.
- Experience or knowledge of recognised security frameworks and standards, along with an interest in supporting compliance, assurance and risk management activities.
- Strong communication and stakeholder engagement skills, capable of building relationships and explaining technical security concepts in clear, plain English to a variety of audiences.
- Good organisational skills, a collaborative approach and a proactive mindset, with the confidence to work across teams and support business‑wide security initiatives.
- Technical knowledge of Microsoft 365 and Azure cloud services. A degree in a relevant technical discipline or a recognised professional qualification would be advantageous.
- Competitive salary
- Family Friendly policies
- Health and Wellbeing support
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search: