Skip to main content
This site uses cookies, find out more

Information Security Analyst

Location Durham
Contract Type Permanent
Hours Full time

Role description

Atom is a digital Bank, which bring with it a set of risks from a security perspective. This role will work within the Security Team, to protect, detect, respond and recover to Atoms customers, brand, people and reputation.

The role holder must be an advocate of best in class security practice with the ability to influence at all levels, provide practical advice and guidance and remain approachable to all of Atoms people.

The role holder will support Atom to ensure that security is in-line with various security standards, applicable to legal, regulatory and best practice frameworks relating to banking standards.

Key responsibilities:

  • Support the development of the Security Framework for Atom
  • Assisting with Third party security assessments.
  • Engagement and support all activities that Atom will undertake.
  • Understanding of General Data Protection Regulation (GDPR)
  • Supporting with scoping, conducting and assessing complex penetration testing; e.g. to CREST, CHECK or CBEST standards or handcrafting application exploits
  • Looking at Security Threat and converting this to a material impact.
  • Collaborate on appropriate training requirement.
  • General audit and risk assessment support
  • Regular report generation and presentation.
  • Acquire and maintain knowledge of relevant industry trends, and product offerings
  • Help to raise awareness of security within Atom through various communication exercises
  • Ensure the Atom security policy is communicated to and followed by all staff, and assist management with investigation of breaches .

Key Performance Indicators

  • Partner due diligence assurance
  • Security assessments to maintain alignment with industry benchmarks and compliance
  • Pentest/Vulnerability management maintenance and improvement
  • Design and deliver company wide security awareness program
  • Risk assessment and management
  • Partner relationship management

Essential Capabilities/experience

  • Experience within an Information security environment
  • Strong third-party management skills.
  • Extensive experience of security governance in a technology environment.
  • Good project management and consulting skills
  • Relevant industry qualification or experience, i.e. diploma/masters in information security, CCSA, SSCA, CISM, CISSP or equivalent.
  • Experience Knowledge of implementing and monitoring performance against the NIST, IS027001 standards and audit process.
  • An appreciation good understanding of the PCI standard and audit process.
  • Strong written and verbal communication skills with ability to adapt style to suit audience
  • Excellent interpersonal skills with ability to build, develop and maintain relationships across all levels
  • Strong attention to detail
  • Excellent influencing skills
  • Confident, assertive and pragmatic approach with ability to exercise judgment and discretion where appropriate
  • Highly organised, with ability to work under pressure and to tight deadline
  • Flexible team player who can work autonomously

Desired Capabilities/Experience

  • Security architecture and security technology design
  • Strong understanding of data and voice networks
  • Business Continuity
  • Resilience
  • Initiative, Resourceful
  • Flexibility and Agility. Able to multi-task and deliver
  • Results orientated
  • Experience of forensics and incident management; full incident response, chain of custody and engagement with legal and law enforcement
  • Third party management skills
  • Relevant industry qualification or experience, i.e. diploma/masters in information security, CCSA, SSCA, CISM, CISSP or equivalent.

How do I apply?

Email your application to

with the job title you’re applying for in the subject heading and attach your CV. This is your chance to be you.

The legal bit.

If you send us your CV we'll use your details when we’re looking at your application for this job. We'll also store your CV for six months in case any roles that we think you'd be a great fit for become available.

If you don’t want us to use your details for this, or if you'd like any information at all about how we use your data, then just let us know at