Job Description

Salary \xe2\x80\x93 \xc2\xa355,000 (circa) + Bonus + Hybrid working (3 days onsite) + Excellent Benefits

Company:
A leading financial services corporation is currently recruiting an Information Security Assurance Analyst who has strong experience performing security assessments for IT systems. Ideally, you will have recent experience conducting 3rd party risk assessments, vulnerability management and commercial capabilities in ISO/IEC 27001 and NIST information security management to be based in Chatham or Wolverhampton x 3 days PW.

The key purpose of this role is to support the Information Security programme and framework. You will focus on core areas such as risk management, third-party security due-diligence reviews, ensuring compliance with legal, regulatory and relevant security standards such as ISO 27001, PCI DSS and the UK data protection act / GDPR. You will also support the security awareness and training activities as defined by an annual schedule of targeted training and testing across our clients.

Core responsibilities:

• Assist with implementation, monitoring and assurance reviews of IT security controls
• Maintain information security frameworks, policies, standards and guidelines
• Support the cyber incident response activities during the initial response analysis, containment and recovery phases of a cyber-incident
• Implement process improvements and efficiencies as defined by the agreed service improvement plans
• Assist with the definition and enforcement of configuration standards and policies for security technologies.
• Conduct research and provide recommendations on emerging threats in support of security enhancements and process improvements.
• Review and respond to alerts from systems including SEIM solutions and vulnerability monitoring services
• Support the Group\'s security awareness and training programme ensuring it meets all industry regulations, standards, and compliance requirements and engages employees to understand and adopt the principles in the manner which they work
• Support the evolution and content definition of the security awareness programme to incorporate and address emerging technologies and risks
• Support the Vulnerability Management reporting and IT remediation planning
• Generate monthly reports that measure employee engagement with security awareness training and trends

Experience Requirements:

• Experience of working within an information security role ideally within FS or a regulated environment
• Experience of performing security assessments for IT systems / processes
• 3rd party risk assessment experience
• Vulnerability management / remediation planning
• External and internal audit management capabilities
• Ability to deliver security awareness planning
• Understanding of IT Infrastructure
• Capabilities in ISO/IEC 27001 and NIST information security management frameworks
• Maintain at least one current professional certification: Any SANS GIAC Security certifications (Administration, Software, or GSE Expert), ISC2 CISSP, or any security systems vendor administration-level certifications

Rewards Package:
\xc2\xa355,000 / 15% Bonus / Work from home options / Flexible working / 25 Days Holiday / Medical Cover / Life Cover / Pension / Flexible Benefits

Information Security Governance Officer

Many thanks,
Jacob

Intec Select