Senior Security Analyst

Company

La Fosse

Location

Greater Guildford Area, United Kingdom

Posted At

8/7/2025

Disclaimer: Hunt UK Visa Sponsors aggregates job listings from publicly available sources, such as search engines, to assist with your job hunting. We do not claim affiliation with La Fosse. For the most up-to-date job details, please visit the official website by clicking "Apply Now."

Description

Senior Information Security Analyst – GRC / NIST

Financial Services Company | Guildford (Hybrid, 2 days/week) | up to £70,000 + Bonus + Benefits

A well-established financial services organisation is seeking an Senior Information Security Analyst to join its maturing InfoSec GRC function. This is a hands-on role focused on implementing the NIST Cyber Security Framework (CSF) and leading key security initiatives across the business.

The successful candidate will report into the GRC Manager and work closely with senior leadership across multiple business units, helping to uplift overall security maturity and embed governance best practices.

What You’ll Be Doing

• Leading day-to-day GRC initiatives aligned to the NIST CSF

• Designing and implementing controls, policies, and procedures in line with frameworks such as NIST, ISO 27001, PCI DSS, DORA, and Cyber Essentials

• Conducting risk and control assessments, identifying material gaps, and managing remediation

• Supporting compliance activities including internal security frameworks and regulatory obligations

• Working cross-functionally to integrate risk management into business-as-usual activity

• Producing risk reports, metrics, and dashboards using Excel and Power BI for governance forums

• Guiding junior members of the team and influencing stakeholders across a federated environment

What They’re Looking For

• 4+ years of experience in information security, with a strong focus on governance, risk, and compliance

• Hands-on implementation experience with NIST CSF is essential

• Broad understanding of security frameworks such as ISO 27001, PCI DSS, DORA, and Cyber Essentials

• Strong data analysis and reporting skills, ideally using Excel and Power BI

• Experience working within regulated industries (e.g. financial services, insurance)

• Confident communicator who can operate independently and engage non-technical stakeholders

Relevant certifications such as CISSP, CISM, CRISC, or ISO 27001 Lead Implementer are highly desirable.

Hunt UK Visa Sponsors

About us

How does it work Contact Us Blog

Product

Companies (Licensed Sponsors)Jobs Visa Types UK Income Tax Calculator

Stay up to date

Twitter Telegram