Information Security Analyst

About the Role

In this role you will monitor and analyse outputs from security systems such as SIEM, email security and endpoint protection, investigate and triage alerts, and conduct regular vulnerability scanning and remediation planning. You will also maintain security documentation, support business continuity and disaster‑recovery testing, contribute to IT projects, promote a strong security culture and stay abreast of emerging threats. • Monitor and analyse outputs from SIEM, email security, and endpoint protection tools • Investigate, triage, and respond to security alerts and incidents • Perform regular vulnerability scanning, develop remediation plans, and support audits • Maintain and improve information security documentation and the ISMS • Support business continuity and disaster recovery planning and testing • Contribute to IT projects and promote a strong security culture • Stay updated on emerging security threats and technologies • Travel to other business sites as required • Assist the InfoSec Manager with additional tasks • Influence and shape the organization’s information security strategy • Work across multiple sites and projects, ensuring varied daily tasks

Key Responsibilities

• ▸siem monitoring
• ▸incident response
• ▸vulnerability scanning
• ▸security documentation
• ▸continuity planning
• ▸threat monitoring

What You Bring

The position is based in Redditch, working hybrid, offering a salary of £28,500‑£33,000. We are seeking an enthusiastic Information Security Analyst who is passionate about protecting organisations from evolving cyber threats and thrives in a fast‑paced environment where security and innovation intersect. The ideal candidate holds a degree in Cyber Security or a related field and possesses professional qualifications such as CompTIA Security+, CEH or CySA+. Experience with security tools (e.g., Nessus, WireShark), knowledge of cloud services like Azure, and familiarity with standards such as ISO 27001, Cyber Essentials and NIST are required, alongside strong organisational skills and a proactive attitude. • Degree in Cyber Security or related discipline • Professional certifications (CompTIA Security+, CEH, CySA+ or equivalent) • Experience in an information security role • Knowledge of cloud services, preferably Azure • Familiarity with Nessus, WireShark and OWASP Top 10 • Understanding of standards such as Cyber Essentials, ISO 27001, ISO 22301, NIST • Excellent organisational skills, attention to detail and proactive attitude • Ability to produce clear, accurate documentation

Requirements

• ▸cyber security
• ▸comptia security+
• ▸infosec experience
• ▸azure
• ▸nessus
• ▸iso 27001

Benefits

Joining us offers the chance to shape the information security strategy, work across multiple sites and projects, and benefit from a continuous learning environment that supports professional development. • Continuous learning environment with support for professional development

Work Environment

Hybrid