Information Security Analyst
£52000 - £58000 + benefits
About the company
Information Security Analyst required for leading name in financial services.
The Information Security Analyst will play a vital role in the Information & Cyber Security Policy Management function within the organisation and have athorough understanding of the Information and Cyber Security regulatory landscape. Assist the global information/cyber security and privacy function in the delivery of the company’s information/cyber security and privacy programmes.
Assist in the operations of the information/cyber security and privacy function ensuring its smooth and effective functioning, that standards, objectives and accountabilities are clearly defined and communicated, that control systems are in place and all aligned to global strategy.
Act as a source of technical expertise, providing advice and guidance on information/cyber security and privacy.
Building strong relationships with internal clients, demonstrating an understanding of their business and how information security and privacy can add value to it.
Collaborate on group wide issues including implementation and further development of information/cyber security, privacy and policies, guidelines and processes.
As required, provide training to employees, marketing partners, or other third parties, ensuring proper information handling in accordance with policies and procedures.
Perform information/cyber security risk analysis on initiatives. Ensure that the group’s information/cyber security risks are consistently analysed and reported to local management.
Assist the IT department in the development and monitoring of relevant security plans and internal control systems throughout the organisation's network, and act as a liaison to IT.
Proven experience in information/cyber security
Knowledge of common information security management frameworks, such as International Standards Organization (ISO) 17799/27001, National Institute of Standards and Technology NIST, the IT Infrastructure Library (ITIL) and Control Objectives for Information and Related Technology (CobiT) frameworks.
Knowledge of the process of performing risk, business impact, control and vulnerability assessments, and defining mitigation strategies.
Knowledge of common cyber-attacks, and ways to protect organisations and individuals from the unauthorised exploitation of systems, networks and technologies.
Have awareness of mainstream operating systems (for example, Microsoft Windows) and a wide range of security technologies, such as network security appliances, identity and access management systems, anti-malware (malicious software) solutions, automated policy compliance and desktop security tools.
Experience in financial services/insurance is desirable, but not required.
International experience is desirable, but not required.
Alternatively, email us directly at firstname.lastname@example.org