About the role

Information Security Analyst ensuring cyber security and maintaining security baseline within the business. Engaging with incidents and supporting audit and advisory activities in a dynamic environment.

Responsibilities

The Information Security Analyst is a key member of the Information Security team, responsible for cyber and information security across the business.
The role is operationally focused, with responsibility for maintaining the organisation’s security baseline while supporting audit, assurance, and advisory activities. The scope is broad and hands-on, providing exposure to a wide range of security controls, technologies, and business processes.****
The Information Security Analyst operates in a dynamic operational environment where priorities can change quickly. Work frequently involves handling interruptions to respond to incidents and balancing multiple competing demands. While the role is demanding, it is achievable with the right approach and provides strong opportunity to develop operational judgement and security fundamentals.****
Analysts are supported through regular team engagement, documented processes, and access to senior team members. In return, the role expects initiative, sound judgement, and the ability to carry out initial investigation and analysis before seeking review or escalation.****
The role reports directly to the Head of Cyber and Information Security.

These requirements reflect the baseline experience and capability needed to operate effectively in a production environment with minimal supervision.**
· Experience gained in an IT operational role, with responsibility for supporting and maintaining business-critical systems and services (typically 3+ years).
· Proven ability to operate independently in a production environment.
· Strong understanding of security fundamentals, networking, and common attack patterns, with the ability to apply this knowledge in an operational context.
· Experience interpreting security tooling output and translating it into actionable risk.
· Clear written and verbal communication skills suitable for both technical and non-technical audiences, including the ability to clearly document findings, decisions, and actions in operational tracking systems.
· Strong organisational skills and the ability to manage your workload and multiple priorities effectively.
**Desirable Experience**
The following experience is beneficial but not essential and is intended to support faster ramp-up and broader exposure within the role.**
· Relevant security certifications (e.g. Security+, SSCP, or equivalent), where supported by applied experience.
· Experience in retail or similarly complex, distributed environments.
· Experience working with a wide variety of cybersecurity tooling (e.g. SIEM, vulnerability management, endpoint security, or email security gateway platforms).

What’s in it for you?**• Fully remote, working from home with office visits (London HQ) to a minimal – once per month**• Competitive salary**• 50% staff discount & 25% for family and friends**• Holiday allowance**• And other company benefits including pension and private healthcare, eligible after a probationary period