Job Title

IT Security Analyst Location:Yeovil Since 2017, Harmony Fire has become the 72nd fastest-growing company in Europe, but we’re aiming even higher. It is our mission to continue that growth with the knowledge that the more we grow the greater the impact we can have — reaching more people, increasing our social impact and creating more progression opportunities for our team. We are passionate about making a difference and obsessed with quality. Our goal is to build a world where every resident can sleep safely at night, knowing their home is 100% compliant. By delivering the highest-quality service, championing our values and going above and beyond to succeed, we can achieve our growth mission and make the UK safer, one home at a time. We do this through our unique methodology: Think– Creating smarter solutions for a safer, more risk-averse future Protect– Applying knowledge to build safer environments Sustain– Building long-term partnerships based on trust and value We’re now hiring anIT Security Analystto lead our cyber and data protection efforts across the Harmony Fire Group. This is a hands-on, high-impact role where you’ll design and manage a full Information Security Management System (ISMS), drive compliance initiatives, and ensure that security is embedded across all systems, processes, and platforms. Key aspects of the role Design and deploy a full ISMS in line with ISO 27001 Lead Cyber Essentials / Cyber Essentials Plus implementation and certification Build security policies, procedures, risk assessments, and documentation from scratch Align company-wide security practices to recognised sector standards Act as the official Data Protection Officer (DPO) for the company Ensure compliance with UK GDPR and the Data Protection Act 2018 Manage Data Processing Agreements, DPIAs, privacy notices, and data mapping Handle DSARs and data breach reporting procedures Define and manage penetration testing schedules and remediation processes Select and implement core security tools (e.g. MFA, endpoint protection, email filtering, vulnerability scanning) Establish and manage a security incident response plan Embed security into the SDLC / DevSecOps process with product and engineering teams Deliver staff security training and phishing simulations Maintain documentation for audits, customer reviews, and stakeholder reporting Develop and maintain DRP and BCP in line with ISO 27001 Regularly test recovery procedures and ensure RTOs and RPOs are met Work with IT and infrastructure teams to implement, monitor and test failover/recovery plans Key requirements Experience implementing ISO 27001 and managing an ISMS Strong working knowledge of GDPR and data protection legislation Experience as a DPO or in a privacy/compliance role Demonstrated success with Cyber Essentials / Cyber Essentials Plus Experience commissioning and managing penetration testing Solid foundation in cybersecurity tooling, standards, and cloud infrastructure Excellent written and verbal communication skills Experience with securing SaaS environments and cloud platforms (Azure, AWS, M365) Certifications such as ISO 27001 Lead Implementer, GDPR Practitioner, Cyber Essentials Practitioner, CompTIA Security+ or equivalent What we look for in our people Athlete’s Grit– You push through challenges and never give up Captain’s Duty– You take responsibility and lead by example Fun-Loving Heart– You bring energy, care and positivity to your work Why work for Harmony Fire A collaborative and supportive environment in which you can grow A Personal Development Plan tailored to your career Mentoring, training and knowledge-sharing across the team Spacious modern workspaces with great facilities Benefits Unlimited holiday Performance bonus (up to 50% of annual salary) Enhanced maternity and paternity policies Lunch, snacks, fresh fruit & Takeaway Fridays Cycle to work scheme Private Medical Reward and Recognition trips (including European city breaks) Team social budget and two major company events each year Auto-enrolment pension scheme Harmony Fire is an equal opportunity employer. We value diversity and are committed to building a team that reflects a variety of backgrounds, perspectives and skills.#J-18808-Ljbffr