Information Security Analyst - GRC
Hybrid working - Kingston upon Thames or Eastleigh
£55,000 - £65,000 Per Annum
We are working with an established international services company as they search for an enthusiastic Information Security Analyst with a focus on Governance, Risk and Compliance.
This position is available as hybrid working in the office a couple of times a month. However, you will need to have the flexibly for increased office time of up to 3 times a week for the needs of the business, such as during audits. This role may also require international travel to their global offices.
Due to the nature of the business and their clients the role will require high levels of SC Clearance. This means that all candidates must be sole British citizens and to have lived in the UK continuously for the last 5 years.
The role will focus on helping to maintain compliance on InfoSec governance audits, including:
- ISO27001, ISO27017, ISO27701 & ISO22301
- UK and EU General Data Protection Regulation (GDPR)
- Data Protection Act 2018
- Cyber Essential Plus
- IASME Governance
- Sarbanes Oxley
On top of this, the role is responsible for:
- Managing the information security management system (ISMS)
- Managing information security risk identification and remediation
- Conduct and document internal audits to support the information security program
- Ensure adherence to legal and regulatory compliance
- Monitor security operations toolsets including SIEM, vulnerability management, endpoint protection, intrusion detection and threat intelligence
- Liaise with and give presentations to all levels of business including clients and senior stakeholders.
- Promote Info Sec awareness within the business through knowledge transfer and training
In line with the Conduct Regulations 2003, when advertising permanent vacancies JNC Recruitment are acting as an Employment Agency, and when advertising temporary/contract vacancies JNC Recruitment are acting as an Employment Business.