East Midlands Railway
Lead Information Security Analyst

How your CV stacks up
Upload your CV to see how well it fits this job role
?%
Lead Information Security Analyst
At East Midlands Railway, every journey matters. Millions of customers rely on us to travel safely, reliably and sustainably across the region. Behind every train departure, customer interaction and operational decision sits a complex technology landscape that must be protected from an ever-evolving cyber threat environment. We're looking for an experienced and passionate Lead Information Security Analyst to help safeguard our people, systems and operations. This is more than a technical security role. It's an opportunity to lead cyber resilience across a critical national infrastructure organisation, shaping security strategy, influencing stakeholders at every level and protecting the services that our customers depend on every day.
Why this role matters
As our Lead Information Security Analyst, you'll play a pivotal role in strengthening EMR's cyber security capability. You'll lead security operations, manage incident response activities, develop security controls and drive a security-first culture across the business. From threat hunting and vulnerability management to advising senior leaders on emerging risks, you'll be at the forefront of protecting our organisation from cyber threats while enabling innovation and business change.
What you'll be doing
- Leading and developing a team of Information Security Analysts
- Managing and optimising key security technologies including SIEM, XDR, anti-virus, email security and vulnerability management platforms
- Driving proactive threat hunting and threat intelligence activities
- Leading cyber incident response and working closely with Security Operations Centre partners
- Identifying, assessing and helping mitigate information security risks across the organisation
- Supporting security governance through ISO27001-aligned controls, policies and procedures
- Providing expert security advice on new technologies, projects and operational systems
- Supporting operational technology (OT) cyber security initiatives across our fleet and wider railway environment
- Promoting a positive security culture and increasing cyber awareness throughout EMR
- Producing insightful reporting, KPIs and trend analysis to inform decision-making at all levels
Reasons to use Rodeo
I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?
Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.
Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.
Start with a chat, not a search bar
Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.
Graduate Consultant — 2026 Scheme
Why you're a good match
StrongYour economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.
See breakdownIt searches the market for you
Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.
Why you're a good match
You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.
Experience fit
Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.
Only hits
No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.
What we're looking for
You'll be an experienced cyber security professional who combines strong technical expertise with the ability to influence and engage stakeholders across the business.
You'll bring:
- Significant experience in a senior Information Security or Cyber Security role
- Strong knowledge of security operations, risk management and security governance
- Experience working with ISO27001 controls, policies and frameworks
- Hands-on experience with enterprise security technologies and security monitoring platforms
- Excellent analytical and problem-solving skills
- Strong communication skills with the ability to explain complex security concepts to both technical and non-technical audiences
- A proactive, organised and customer-focused approach
- Professional certifications such as ISC2 CISSP and ISACA CISM are highly desirable.


Get help with your application
Your very own career expert that helps elevate your application to the next level.
Why join EMR?
We are proud to be One Team at East Midlands Railway. With more than 2,600 colleagues, our people are at the heart of everything we do. We have been recognised as a Top Employer ten times and hold Gold accreditation from Inclusive Employers, reflecting our commitment to creating a workplace where everyone can thrive and bring their authentic selves to work.
In return, you'll receive:
- Competitive salary
- Defined Benefit Pension Scheme
- Free standard leisure travel on EMR, Transport UK and LNER services
- Friends and Family discounted travel on the EMR network
- 75% discount on national leisure rail travel for you, your partner and dependants
- Up to 32 days annual leave
- Ongoing professional development opportunities
- The chance to make a real impact within a critical public service organisation
“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”
Jessica, London
Skills
Location