Job Description
Information Security Graduate 2025
Information Security Graduate
There are many alternative career pathways within a major international law firm like Addleshaw Goddard. You don't need to be a lawyer to be a leader in this supportive and inclusive professional environment. Just be yourself. And start by being a totally unique Information Security Graduate.
About Addleshaw Goddard
As an international law firm working for many thousands of leading organisations in over 100 countries, we don't deal in typical problems, typical solutions or typical careers. Our business is about finding the smartest route to the biggest impact, for our clients, our colleagues and the communities we serve. That means bringing great minds together and helping individuals to be the best they can be.
About the role
The IT teams are Addleshaw Goddard are located across our London, Manchester, Leeds and Edinburgh offices but they support the entire global business. These teams all work closely together to find innovation solutions and provide the best possible service. The Information Security team is instrumental in ensuring the firms security certifications are compliant and all regulations are in place.
Our two-year Information Security Graduate programme is designed to equip you with the knowledge, skills and experience to become an Information Security specialist in a large organisation. Based in our Manchester office, you will gain hands on experience with our Information Security team and exposure to our wider IT teams. You will build knowledge in the following areas: Risk Management, Policy and Compliance, Security Certifications, Supplier Due Diligence, Incident Response and Awareness, and Security Awareness, as well as working on ongoing projects.
What is the scope of the role?
The following list is not exhaustive but gives a flavour of the expectations and responsibilities of the Information Security Graduate:
- Assist with incidents and requests that are assigned to Information Security within ServiceNow.
- Learning how to conduct Information Security risk assessments within the Surecloud GRC tool.
- Assist in managing the requirements for the firm to comply with ISO/IEC 27001 Policies and Standards and Cyber Essentials Plus.
- Assisting with conducting information security audits internally and externally.
- Assist in remediation activities to resolve audit findings.
- Respond to client audit requests and understand the client requirements.
- Conduct security due diligence on new and existing suppliers within Surecloud.
- Learning how to interpret and write information security policies and controls, standards, and other requirements in light of specific internal information systems and assists with the implementation of these and other information security requirements.
- Provide special technical guidance to the Information Technology Department staff about the risks and control measures associated with new and emerging information systems technologies.
- Assist with the selection, installation, and adoption of automated tools that enforce or monitor the compliance with information security policies, procedures, standards, and similar information security requirements.
- Establish and maintain adequate audit trails so that sufficient evidence of business activities exists to detect unauthorised usage, to quickly resolve problems, and to otherwise maintain secure and reliable information systems within the Firm.
- Participate in, and act as a security representative in, the Change Advisory Board and the Design Authority Board to carry out information systems risk assessments including those associated with the development of new or significantly enhanced business applications.
- Participates in security incidents.
- Participate in allocated projects that involve information security aspects.
- Assist with conducting phishing simulations and training across the business.
- Conduct access control auditing using Azure Privileged Identity Management.
What are we looking for
There is no such thing as a ‘typical' Addleshaw Goddard candidate. As a firm, we have always been shaped by different ways of looking at the world. We know our success depends on giving opportunities to people from the widest range of backgrounds, locations and perspectives.
Of course, there are some attributes we would like you to bring to this role (listed below). However, your personality and individuality matter just as much – we want you to be yourself and we will do our best to build your skillset.
- A desire to develop and progress within Information Security, ideally but not necessarily with skills, previous experience or knowledge within this field.
- Ability to get on well with a broad range of people and stakeholders.
- Excellent organisational skills, supporting effective hybrid / remote working
- Project management skills, with the ability to identify and resolve problems as they arise.
- High level of attention to detail with significant emphasis on quality of work.
- Ability to be resilient and successfully manage multiple competing workstreams.
- Comfortable navigating and adapting to a range of technology platforms
- Strong logical reasoning and problem-solving abilities
- 2:1 degree in an IT or Science, Technology, Engineering or Mathematics (STEM) subject desired
Desirable skills
- Knowledge of GDPR and Data Protection
- Knowledge of ISO27001 and other best practice security management frameworks
- Experience in third party security auditing
- Knowledge of cloud security controls
- Knowledge of the legal sector
WHAT CAN YOU EXPECT
With Addleshaw Goddard, you can expect a supportive team culture, a flexible, friendly and state-of-the-art working environment, and an attractive salary and benefits package.
For the role of Information Security Graduate we will reward you with a starting salary of £26,000 a year, with a review to increase in your second year (subject to performance).
The team will also be supportive of the following courses for the graduate to complete: ISO27001:2022 Lead Auditor Course, CISSP (Certified Information System Security Professional), CompTIA Security+ and Soft skills courses.
Core benefits include Life Assurance, Income Protection, Pension and Bonus schemes, with additional Health & Wellbeing benefits and services, plus many voluntary Lifestyle benefits, ranging from a cycle to work scheme, gym allowance and Give As You Earn scheme to season ticket travel loans and railcards.
Our early careers pathways are based on delivering the right training and development opportunities for you as an individual. Our dedicated early careers team is on hand with advice and assistance.
We are an equal opportunity employer and we do not discriminate on the basis of a person's sex, gender, ethnicity, disability, sexual orientation, background or any other protected characteristic. We are committed to having a diverse team and actively encourage applicants from diverse backgrounds and communities.
To do this effectively, we'd like to hear from you as soon as possible if there are things we can do to support you through the application or interview process – for example, providing you with additional time, organising appointments on particular days, or providing any accessibility support you may require to access our resources or buildings. If you would like to discuss ways in which we can support you, please email earlycareers@addleshawgoddard.com
RECRUITMENT PROCESS
The recruitment process is as follows:
- Eligibility and Application Form
- Audio Interview
- In-person Assessment Centre 19th August 2025 (subject to change)
- Start date 6th October 2025
Closing date: 3rd August 2025 (please note, due to a high volume of applications received, we may close the deadline earlier. To avoid disappointment, complete your application as soon as possible).
International Applicants and Sponsorship
We welcome applications from candidates from all locations and do not make recruitment decisions based on applicants current location or right to work status.
However, please note that the terms of the Graduate role do not meet the Home Office requirements for a Skilled Worker visa. Therefore, we are unfortunately unable to sponsor visas for these roles at the point of hire. Please do look into other right to work options such as the Graduate visa. More information can be found on gov.uk regarding this. If you have any specific queries regarding your current circumstances, please get in touch by emailing earlycareers@addleshawgoddard.com
Meet the recruiter
Aisha Saeed
Email Aisha Saeed: Aisha.Saeed@addleshawgoddard.com
Speak with Aisha Saeed:
- Location:Manchester
- Vacancy Type:Early Careers Opportunities
- Full time/Part time:Full Time
- Closing Date:4 August 2025