Data & Information Security Analyst (18‑Month FTC)

Compliance & IT | Birmingham or Leeds

An established, full‑service organisation with a national footprint is seeking a Data & Information Security Analyst to join its Compliance and IT functions on an 18‑month fixed‑term contract. This is a key role responsible for protecting the firm’s digital assets, maintaining security accreditations, and supporting a strong culture of information security across the business.

The Role

Working across both Compliance and IT, the successful candidate will play a central part in monitoring, analysing and escalating security incidents, as well as implementing and maintaining controls aligned to ISO 27001:2022 and Cyber Essentials. You will collaborate closely with internal teams and external partners to ensure the organisation’s systems, data and processes remain secure, resilient and compliant.

Key Responsibilities

• Monitor networks and systems for suspicious activity and potential breaches.
• Investigate and escalate security incidents, ensuring timely and effective responses.
• Document incidents with clear analysis and remediation actions.
• Conduct vulnerability assessments and monthly endpoint security checks.
• Coordinate penetration testing (physical and black‑box) to identify risks.
• Work with IT teams to ensure remediation actions are implemented.
• Develop and maintain security policies, procedures and standards.
• Deliver security awareness training and promote a strong security culture.
• Stay informed on emerging technologies and recommend improvements.
• Support data gathering for Data Subject Access Requests.
• Conduct internal audits aligned to ISO 27001 requirements.

Skills & Experience

• Strong knowledge of ISO 27001:2022.
• 3+ years’ experience in a similar role with a relevant degree, or 5+ years’ industry experience.
• Experience within the legal or professional services sector.
• Relevant certifications such as CISSP, CISM or CompTIA Security+.
• Knowledge of NIST, UK GDPR and Cyber Essentials.
• Proficiency with security tools (XDR, EDR, SIEM).
• Strong communication and teamwork skills.
• Ability to prioritise workloads and meet deadlines.
• Proactive, service‑oriented approach with enthusiasm for continuous improvement.

Location & Working Pattern

• Based in Birmingham or Leeds.
• Hybrid working: 3 days in office during probation (6 months), then 2 days thereafter.
• Occasional travel to London may be required.

Due to the high volume of applications, we are not able to respond to all enquiries. If you have not received a response within 72 hours, please assume you have not been shortlisted at this stage, however thank you for taking the time to apply.