Information Security Analyst

This range is provided by Locke and McCloud. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.

Base pay range

Information Security Analyst

Be part of a forward-thinking law firm undergoing a major cyber transformation. As an Information Security Analyst, you’ll support governance, lead audits, and build security resilience across multiple jurisdictions.

What You’ll Be Doing

• Maintain and improve the ISMS, including policies, procedures, and guidelines
• Ensure ongoing ISO 27001:2022 alignment across UK and international offices
• Conduct internal audits, lead remediation efforts, and support third-party reviews
• Run supplier due diligence and respond to client risk assessments
• Investigate and escalate incidents, contributing to ongoing threat awareness
• Deliver awareness training and drive adoption of secure behaviours

What You’ll Bring

• Experience in information security or compliance-based roles
• Knowledge of ISO 27001, Cyber Essentials, NIST or similar frameworks
• Ability to communicate and collaborate across business functions
• Comfortable working in cloud and Microsoft 365 environments
• Certifications like CISMP, CISSP or ISO 27001 Lead Auditor are a bonus

Seniority level

Mid-Senior level

Employment type

Full-time

Job function

Analyst

Industries

Legal Services