We're supporting a key enterprise in the energy sector to secure a highly skilled Information Security Business Analyst to join their Cyber Security Improvement Program (CSIP). This role will work across two critical streams: the Information Security Management Framework (ISMF) and Data Loss Prevention (DLP) projects.

You'll act as the vital bridge between technical teams and the business, analysing current frameworks, identifying gaps, supporting regulatory alignment, and helping to implement robust technical controls, particularly for data protection and loss prevention.

What you'll bring:

• Deep understanding of ISO/IEC 27001 and ISMS frameworks

• Experience with gap assessments of security policies and procedures

• Strong working knowledge of DLP controls (e.g. endpoint, email, CASB)

• Ability to conduct risk assessments and develop mitigation plans

• Skilled in translating security findings into clear business requirements

• Confident working across compliance frameworks (e.g. AESCSF, SOCI)

• Strong stakeholder engagement and workshop facilitation skills

• Familiarity with tools like SIEM, CASB, DLP suites

This is an exciting chance to contribute to foundational security initiatives in a critical infrastructure environment.

Ready to make an impact in cyber resilience? Apply now or get in touch for a confidential chat.