Information Security Analyst - GRC

Location: England - East Anglia - Hertfordshire

Work Type: Permanent

Salary: £55000 to £70000

• Cutting edge technology environment
• Fantastic Culture
• Hybrid Working Environment

Information Security Analyst - GRC - £55-70K + Bens - Hertfordshire - (Hybrid Working)

What would I be doing?

Reporting to the Group Information Security Manager, you will work on all security matters spanning people, process, and technology, collaborating with various stakeholders across the group. You will support the wider information security team in writing, reviewing, and updating information security related policies and processes, coordinating, and supporting the InfoSec risk management process.

This role is not a technical hands on role but would suit an individual who has a technical background having worked with a range of technology and security tools.

About you

You will have gained experience in,

• Creating and regularly revising information security documents, policies, processes, and procedures as required.
• Worked closely with business stakeholders and project teams to understand, scope, and define security requirements.
• Developed control testing strategies, to ensure our security controls are meeting their objectives.
• Perform internal security and vendor risk assessments.
• Support Data Protection activities as required.
• Assist the Information Security teams and Business functions in maintaining security certification which include PCI DSS, and SSAE18/SOC2 attestation.
• Provide effective reporting to the Group Information Security Manager of trends, audit findings and risk ratings.

What we are looking for,

• Experience of working in an Information Security role dealing specifically with governance, risk, and compliance areas.
• Prior experience writing Information Security related Policies, Processes and Procedures.
• Experience managing internal and third-party vendor risk assessments and writing risk assessment reports.
• A track record of effectively analysing security controls, while understanding the risk of certain controls not being in place.
• Knowledge of Vendor Risk Management tools such as OneTrust.
• Knowledge of current information security standards, frameworks, and regulations such as ISO27001, NIST, SSAE16/18/SOC 2, PCI-DSS, GDPR.
• Working towards (or already have) any of CISA, CRISC, or CISM certifications.

Whats in it for you? 

Employee benefits that are designed for you, they care about people and they've ensured they have a wealth of benefits that focus on your well-being. We can offer technically stretching work, a competitive salary and;

• Hybrid Working patterns (varies depending on your role/team)
• 30 days Work from Anywhere policy
• Wellbeing support through Apps such as Unmind and an Employee Assistance Programme
• 25 days annual leave, rising to 27 days after 5 years service (plus optional holiday purchase)
• Pension scheme (various options available including employer contribution matching up to 7%)
• Private Medical Insurance
• 22 weeks paid maternity leave and 6 weeks paid paternity leave (once relevant service requirements complete)
• Train Ticket loan (interest-free)
• Cycle to Work Scheme
• Free shuttle bus to and from Hatfield Train Station to the Hatfield offices
• Opportunity to participate in Sharesave and Buy as You Earn share schemes
• Income Protection (can be up to 50% of salary for 3 years) and Life Assurance (3 x annual salary)

For more information and immediate consideration please apply today

Identifi Global Equality & Diversity Statement

"Everybody is a Genius. But if you judge a fish by its ability to climb a tree, it will live it’s whole life believing it is stupid – Albert Einstein"

Our customers come from all walks of life and so do we. We hire great people from a wide variety of backgrounds, not just because it’s the right thing to do, but because it makes our customers stronger.

Our mission is to help everyone find their place in the world. This means we continually celebrate the diverse community different individuals cultivate.

As an equal opportunity Recruiter, we stay true to our mission by ensuring that everyone finds the right place.