Information Security Analyst

Job Summary

Required Qualifications

• 2-4 years experience in information security or related role
• Experience working in SaaS or cloud-first environment preferred
• Good understanding of ISO 27001 / ISO 27002 and practical ISMS implementation
• Familiarity with SOC 2, CSA STAR, and common control frameworks
• Good knowledge of cloud security (AWS and/or Azure)
• Understanding of identity and access management, encryption, logging/monitoring, and least privilege principles
• Awareness of modern SaaS security risks (e.g. multi-tenancy, data isolation, API security)
• Familiarity with secure software development and OWASP Top 10
• Understanding of DevOps, CI/CD pipelines, and infrastructure-as-code environments
• Experience working with vulnerability management, scanning tools, or SIEM platforms (e.g. Datadog or equivalent)
• Experience supporting audits or compliance programmes (ISO 27001, SOC 2, etc.)
• Experience conducting risk assessments and control evaluations
• Ability to translate technical controls into clear, customer-facing language
• Exposure to AI governance, data ethics, or emerging AI regulatory requirements
• Experience with Trust Centers or customer assurance functions
• Cloud certifications (AWS / Azure)
• Experience in a SaaS or cloud-first environment preferred
• Experience working cross-functionally with engineering and product teams
• Exposure to customer-facing security or compliance activities is highly valuable