Skip to main content
BACK TO CAREERS ON SHORE

Information Security Analyst

Ready to build a cybersecurity career with expertise in both governance and hands-on tech?
We are seeking a motivated Information Security Analyst to support our enterprise and maritime cybersecurity initiatives. In this role, you’ll gain hands-on experience working on audit readiness, compliance frameworks (e.g. ISO 27001), and technical security configurations. 
The role reports to the Cyber Security Officer and is designed to build a 'T-shaped' skillset, putting you on an accelerated path toward security proficiency by providing foundational experience in both business-focused risk management and hands-on technical implementation.

Key Responsibilities
As a key member of the security team, you will contribute to a variety of ongoing operational tasks and strategic security projects, including:

Governance, Risk & Compliance (GRC):
•    Assist in security risk assessments, track findings, and support the maintenance of our ISO 27001-aligned Information Security Management System (ISMS).
•    Assist in coordinating maritime cybersecurity class surveys for the vessel fleet, including maintaining audit schedules, liaising between vessels and class societies and reviewing compliance.
•    Support the development of security policies and participate in internal/external audit preparations to ensure we meet compliance goals.
•    Help with third-party vendor risk reviews, promote security awareness campaigns, and assist in developing, tracking, and reporting on key security metrics (KRIs)—such as vulnerability remediation times or security awareness training completion rates—to measure program effectiveness and support audit readiness.

Technical Security Operations:
•    Learn to monitor systems using our SIEM (Azure Sentinel), triage alerts, and assist in the response process for minor security incidents in coordination with our SOC.
•    Use Tenable.io to conduct vulnerability scans, analyze results using CVE/CVSS scores, and collaborate with IT to track remediation efforts.
•    Help administer and monitor Microsoft 365 security tools (e.g., Azure AD, Defender, Intune). This includes analyzing Microsoft Secure Score recommendations, prioritizing improvements based on risk, and coordinating changes with IT.
•    Assist in developing Power Automate flows to streamline GRC or security response processes, and collaborate with IT teams on implementing security configurations.

What We're Looking For 
•    Bachelor's degree in Information Security, Computer Science, or related field (or equivalent experience).
•    Junior professionals with up to 2 years of experience in information security or recent graduates, eager to launch their careers in the field.
•    Familiarity with information security standards (e.g. ISO 27001, NIST, etc.).
•    Interest in both technical security (endpoints, automation, vulnerability management) and governance work (audits, policy, compliance).
•    Hands-on exposure to any of the following (from coursework, labs, internships, or personal projects):
      o    Microsoft 365 Security: Familiarity with tools like Intune, Defender for Endpoint, or Azure AD.
      o    Vulnerability Management: Experience with scanning tools like Tenable.io or similar.
      o    Automation: Basic understanding of or interest in Power Automate or simple scripting.
•    Strong communication skills and ability to collaborate with cross-functional teams (e.g., IT, Compliance, SOC).
•    Strong attention to detail, documentation habits, and willingness to learn.

Nice to Have (Not Required)
•    Exposure to the maritime or shipping industry.
•    Any entry-level certifications (e.g., CompTIA Security+, ISO 27001 Foundation, Microsoft SC-900, AZ-900, SC-200, CySA+).
•    Basic scripting or automation skills.
 

APPLY NOW