We are seeking an Information Governance & Security Analyst to support and enhance the firm’s Information Security Management System (ISMS). This role focuses on ensuring policies, procedures, and practices align with ISO 27001, regulatory requirements, and industry standards.
You will work across teams to strengthen compliance, support audits, and contribute to governance initiatives, while also gaining exposure to emerging technologies such as AI. Training and mentorship will be provided to support your development.
Responsibilities:
- Maintain and improve ISMS policies and procedures in line with ISO 27001, GDPR, and MFSA requirements
- Partner with IT, Risk, and Compliance teams to ensure policies are practical, relevant, and up to date
- Monitor regulatory and industry developments, identifying gaps and recommending improvements
- Manage policy documentation, including version control, approvals, and review cycles
- Support internal audits by assessing compliance, identifying gaps, and tracking remediation actions
- Help maintain the intranet as the central source for governance documentation
- Assist with client security questionnaires and compliance requests
- Contribute to awareness initiatives that promote a strong security culture
- Maintain audit-ready documentation and evidence for regulatory and certification purposes
- Participate in testing and evaluation of AI tools and other technologies, providing governance and risk insights
- Support Health & Safety compliance activities where required
Requirements
- Exposure to information security, compliance, or IT governance
- Understanding of ISO 27001 and GDPR principles is an asset
- Strong analytical thinking and attention to detail
Benefits
- Hybrid working
- Flexible working hours
- Corporate discounts
Education and experience
- A degree in IT, Information Systems, Business, Law, or a related field
- Experience with policy writing, audits, or compliance support is advantageous
- Previous local experience in a similar role