Information Security Analyst

Desired work region:West Midlands
Sector:Information Security
Ref:39726
Scroll

About Profile

This candidate is a highly capable and technically skilled information security professional with a strong track record in legal risk and compliance, particularly in law firm environments. With a background in computer science and cybersecurity, this individual brings a detailed, process-driven approach to improving firm-wide information security, managing risk registers, conducting internal audits, and supporting ISO27001 compliance.

In the most recent role at a top 50 UK law firm, the candidate held responsibility for promoting best practice in information security, triaging security risks, running phishing simulations, and acting as a trusted internal consultant on cyber-related incidents. They worked closely with IT and senior stakeholders to design and deliver vulnerability assessments and policy improvements, as well as producing research on emerging threats and technologies.

Key competencies:
  • Proven expertise in ISO27001 audits, both internal and external
  • Risk acceptance reviews and risk register management
  • Delivery of security awareness and phishing simulation programmes
  • Strong stakeholder engagement, including collaboration with the C-suite
  • Third-party assurance and supplier risk assessments
  • Drafting and maintaining IT and cybersecurity policies and procedures
  • Conducting penetration testing and supporting vulnerability remediation
  • Hands-on experience with SIEM tools and cloud security environments
  • Regularly leading least-privilege access reviews and cloud account governance
Legal Experience:

Information Security Analyst | Top 50 UK Law Firm | 1 year
Information Security Officer and Auditor | Top 100 UK Law Firm | 0.5 years
Information Security Management System Administrator | Technology Company | 0.5 years
Application Support Analyst | Public Transport Group | 1.5 years

Education & Qualifications:

MSc Cyber Security | University
BSc Computer Science | University
Business Level 3 | Business Training College
IT Level 3 | College

If you're looking for skilled risk and compliance professionals with hands-on law firm experience, get in touch to explore profiles like this one.

More candidates I am representing

View All

Practice Manager

£65,000+
This candidate is a seasoned risk and compliance professional with an impressive track record of over 15 years in the legal sector. With a strong background in practice management, they bring a unique blend of operational expertise and compliance leadership across multi-office law firm environment

Regulatory Specialist

£53,000+
This candidate is an experienced and highly capable legal risk and compliance professional with a strong background in regulatory investigations, advisory work, and policy development. With a foundation built in regulatory enforcement and progressed into strategic in-house roles, this individual brings a nuanced understanding of both regulatory expectations and law firm operational risk.

Information Security Analyst

£30,000+
This candidate is a highly capable and technically skilled information security professional with a strong track record in legal risk and compliance, particularly in law firm environments. With a background in computer science and cybersecurity, this individual brings a detailed, process-driven approach to improving firm-wide information security, managing risk registers, conducting internal audits, and supporting ISO27001 compliance.

Compliance Manager

£75,000+
This highly experienced risk and compliance professional offers over eight years of dedicated expertise in legal risk management, new business intake, conflicts analysis and anti-money laundering across a range of leading UK and international law firms.