Information Security Assurance Analyst
United Kingdom
Full Time
1 week ago
No Sponsorship
Key skills
SaaSCommunicationPenetration Testing
About this role
Role Overview
- Conduct regular assurance across systems, suppliers, and internal processes to meet policies, standards, and regulatory obligations.
- Conduct control assurance reviews and compliance checks aligned to frameworks such as ISO 27001, SOC 2, and Cyber Essentials Plus, assessing whether controls are appropriately designed and operating effectively.
- Ensure security controls support compliance with pensions sector specific requirements.
- Perform security due diligence and ongoing assurance for suppliers, hosted service providers, and SaaS partners.
- Review security test results (penetration testing, vulnerability scanning) and provide oversight by tracking remediation actions, validating evidence of closure, and escalating overdue or high risk items as required.
Requirements
- Excellent communication and interpersonal skills
- Assurance experience/interest
- Detail oriented
- Good judgement
- Good organisational skills
- Experience in software, IT services, or technology is advantageous, but curiosity and willingness to learn matter most.
Benefits
- 25 days holiday (plus public holidays) increasing with length of service up to a maximum of 28 days, with carry over of up to 1 week
- Buying and Selling holiday (up to 1 week)
- Volunteer day
- 5% Employer contribution pension
- Life Assurance
- Private Medical Insurance
- Employee Assistance Programme (EAP)
- Health care cash plan
- Tusker – Electric Car Leasing scheme