Evelyn Partners
wealth management
InformationSecurityComplianceAnalyst
“Information Security Compliance Analyst at Evelyn Partners. Skills: Information security risk management, Governance, risk and compliance (GRC), ISO 27001, NIST CSF, Cyber Essentials. Execution of day-to-day information security risk management activities. Enhancement of the overall effectiveness and efficiency of information security risk management capabilities”
What You'll Achieve.
Enhancement of the overall effectiveness and efficiency of the information security risk management capabilities; Ensuring our organisation's compliance with information security standards and frameworks; Embedding a strong, risk-aware security culture
Industry & Context.
Analysing security controls; Understanding the risk of certain controls not being in place; Identifying and assessing emerging and existing information security risks
What They're Looking For.
Must Have
A minimum of 3 years experience in an Information Security based role, dealing specifically with governance, risk and compliance areas and undertaking information security in both a waterfall and an agile context., Prior experience writing Information Security related Policies, Processes and Procedures., Experience managing internal and third-party vendor risk assessments and writing risk assessment reports., A record of accomplishment of effectively analysing security controls, while understanding the risk of certain controls not being in place., The ability to effectively communicate security risks and impact to various business (often non-technical) stakeholders while working proactively, pragmatically and collaboratively in a fast-paced working environment, balancing multiple concurrent activities., Experience in using standards such as ISO 27001 (Implementation, Compliance, Certification, and audit reviews), NIST CSF, and Cyber Essentials.
Nice to Have
Degree or equivalent in Information Technology or Risk Management is preferred., Certification in Information Security domains is preferred, especially around ISO27001., Certification in cloud architectures is advantageous, especially Microsoft Azure.
What You'll Do.
Execution of day-to-day information security risk management activities
Enhancement of the overall effectiveness and efficiency of information security risk management capabilities
Ensuring organisation's compliance with information security standards and frameworks
and maintaining security best practice
Implementing technical standards
Providing expert advice to stakeholders
Driving continuous improvement of the security posture
Preparing and presenting clear
actionable security reports
Leading information security risk management activities
Identifying and assessing emerging and existing information security risks
Supporting compliance and engagement initiatives
Managing ISMS activities
Managing certifications
Working closely with internal teams and security partners to embed a strong
risk-aware security culture
How You'll Work.
Team & Collaboration
Internal and external cybersecurity collaboration; Contributing to industry and partner engagements; Working closely with internal teams and security partners
Communication Scope
Effectively communicate security risks and impact to various business (often non-technical) stakeholders; Preparing and presenting clear, actionable security reports
Process & Methodology
Balancing multiple concurrent activities
Applying for this Information Security Compliance Analyst role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on SmartRecruiters
- SmartRecruiters often includes a video screening step — check camera and mic permissions.
- Link your GitHub or portfolio directly in the profile section for technical roles.
- Applications may be reviewed by AI scoring before reaching a recruiter — use keywords from the job description.
ANONYMOUS · UNFILTERED
What do employees actually say about Evelyn Partners?
Real rants from real employees. Read before you apply.