Information Security Analyst
- Employer
- Hays.
- Location
- United Kingdom, Leeds
- Salary
- Competitive
- Closing date
- 19 Sep 2022
View more
- Sector
- Consultancy
- Job Role
- Cyber Security Consultant
- Job Type
- Permanent
You need to sign in or create an account to save a job.
Information Security Analyst
Flexible Location - Up to £65k
Remote with 2 days per month in your local office
Hays Technology are working with a global business consultancy organisation who are expanding their Information Security Assurance team as they go through a transition period within the business and are looking for an experienced Information Security Analyst. They are offering a remote working policy as well as progression and strong development pathways.
What you'll be doing:
Reporting to the IS Governance Lead you will be part of the 2nd line of defence and will be responsible for supporting the Information Security Governance Lead to deliver strategic objectives. You will also be responsible for:
Maintaining information security policies, processes, standards and procedures.
Conducting reviews and evaluate policies, standards, processes and procedures as directed.
Maintaining the Information Security Common Control Framework, connecting with Risk and Compliance teams to implement changes.
Provide advice, guidance, and support to the firm on information security policies, standards and controls.
Provide guidance to first line of defence on all clarification requests on requirements including implementation guidance on security policies, processes, standards, procedures and controls as and when requested.
Provide support for internal and external audits; ISO27001, PCI-DSS, Cyber Essentials and Cyber Essentials+, SOC2 and other security compliance programmes.
Analysing data to provide insights on the governance, risk and compliance maturity and effectiveness.
What we're looking for:
Demonstrable work experience in developing and maintaining Information Security policies and controls frameworks.
Good knowledge and practical experience utilising global frameworks including ISO 27001, ISO 27702, CIS, SOC 2 Type 1/2 Report, PCI-DSS, NIST Cybersecurity framework and ISF.
Good understanding of privacy requirements (including GDPR etc.).
Good working knowledge of the IT security aspects of IT infrastructure (network and servers) and services, including Cloud computing and application security.
Excellent written and verbal communication skills, including report writing.
Strong analytical and problem-solving skills.
Security certifications preferred (CISSP, CISM or equivalent).
Experience of working with automated continuous controls monitoring tools would be beneficial
What you need to do now
If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now.
If this job isn't quite right for you but you are looking for a new position, please contact us for a confidential discussion on your career.
Flexible Location - Up to £65k
Remote with 2 days per month in your local office
Hays Technology are working with a global business consultancy organisation who are expanding their Information Security Assurance team as they go through a transition period within the business and are looking for an experienced Information Security Analyst. They are offering a remote working policy as well as progression and strong development pathways.
What you'll be doing:
Reporting to the IS Governance Lead you will be part of the 2nd line of defence and will be responsible for supporting the Information Security Governance Lead to deliver strategic objectives. You will also be responsible for:
Maintaining information security policies, processes, standards and procedures.
Conducting reviews and evaluate policies, standards, processes and procedures as directed.
Maintaining the Information Security Common Control Framework, connecting with Risk and Compliance teams to implement changes.
Provide advice, guidance, and support to the firm on information security policies, standards and controls.
Provide guidance to first line of defence on all clarification requests on requirements including implementation guidance on security policies, processes, standards, procedures and controls as and when requested.
Provide support for internal and external audits; ISO27001, PCI-DSS, Cyber Essentials and Cyber Essentials+, SOC2 and other security compliance programmes.
Analysing data to provide insights on the governance, risk and compliance maturity and effectiveness.
What we're looking for:
Demonstrable work experience in developing and maintaining Information Security policies and controls frameworks.
Good knowledge and practical experience utilising global frameworks including ISO 27001, ISO 27702, CIS, SOC 2 Type 1/2 Report, PCI-DSS, NIST Cybersecurity framework and ISF.
Good understanding of privacy requirements (including GDPR etc.).
Good working knowledge of the IT security aspects of IT infrastructure (network and servers) and services, including Cloud computing and application security.
Excellent written and verbal communication skills, including report writing.
Strong analytical and problem-solving skills.
Security certifications preferred (CISSP, CISM or equivalent).
Experience of working with automated continuous controls monitoring tools would be beneficial
What you need to do now
If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now.
If this job isn't quite right for you but you are looking for a new position, please contact us for a confidential discussion on your career.
You need to sign in or create an account to save a job.
Get job alerts
Create a job alert and receive personalised job recommendations straight to your inbox.
Create alert