Information Security Analyst

Thomsons Online Benefits ,
London, Greater London
More Details

Overview

Job Description

Our mission and vision Thomsons Online Benefits is Changing Benefits. For Good. Our unique and innovative SaaS platform takes employee engagement to a whole new level. We are fast paced, ambitious, people focused and on a journey to dominate the global benefits market. We are in the midst of one of the most exciting times in the company's history and while we are already recognised as the global leader in our industry, we will not become complacent. We continue to work to revolutionise the market and our PINK people are what makes this possible. We are passionately committed to going the extra mile for our clients, partners and people. Our values to 'be brilliant together', 'maximise potential' and to 'challenge everything, deliver excellence' are part of our unique culture. This is the PINK glue that binds us. It is time for Thomsons Online Benefits to continue its success. We truly believe that using our platform and products can impact and improve people's lives. In fact, nearly 2 million people are already using our platform (Darwin). That's a lot of people enjoying their flexible benefits! About the team The Thomsons Information Security team works tirelessly to keep all Thomsons data and information safe from compromise, loss or theft. We continually maintain a functional ISMS aligned with our industry certification of the ISO 27001: 2013 and all other security certifications held by TOB. Our aim is to enable, empower and educate users to be security minded at all times. The role and your mission Reporting to the Head of Information Security in London, you will be contributing to the management of Information Security across the global business by: * Helping to maintain ISO 27001: 2013 Certification in our UK office - but also to assist with the ISMS across our global offices * Assisting with reporting information security compliance and risk to key stakeholders within the business * Assisting with Information Security incident management and remediation across our global offices * Contributing to the Information Security pre-sales and RFP process by reviewing client surveys/producing and maintaining security schedules for both clients and internal stakeholders. * Contributing to the review of Information Security requirements as part of the contractual process * Contributing to the Application and Infrastructure Penetration testing process * Liaising with internal Development, Infrastructure, Architecture and Product teams in relation to information security threats, vulnerabilities and recommending mitigations. * Helping to maintain ongoing security awareness and training programs across all global offices. What skills and values you will bring: * Any ISO 27001:2013 related certifications, e.g. Lead Implementer; Lead Auditor * CISSP * CISM * University graduate in Computer Science related discipline * Risk Management/Audit related qualifications Our PINK benefits and culture * An opportunity to work in a fast growing, innovative company with lots of room for progression * A fail-friendly environment that encourages learning and initiative * Flexible working options (when applicable) * Day off on your birthday * Weekly health and fitness classes * Matching charity contributions, charity days off and Pay it Forward charity challenge * A flexible reimbursement account for you to spend on the things that matter to you * Pension, Life and Medical Insurance So if you like the look of what you see, and think you could be the perfect fit for us, then take the leap and apply today! Go on, what are you waiting for?

People also viewed