Information Security Analyst

C4S Search Ltd ,
Westlea, Swindon, Wiltshire
Job Type: Full-time
Salary: £30,000 per annum

Overview

My client who are a global leading service provider are looking for an Information Security Consultant to join their successful team. This is an exciting opportunity for an Information Security Analyst. You will be responsible for information security governance, risk and compliance activities - all essential components in protecting my clients data, systems and network. The role will also involve testing security controls and providing assurance in their journey through cyber essentials and PCI compliance. This role is in a friendly team that has worked hard to promote a positive view of Information Security as an enabling and supportive function. The successful candidate will be involved in all aspects of information security, providing security governance on projects, testing security controls, risk management processes, working in partnership with data protection, operational, support and development teams and our system stakeholders. They are looking for an experienced professional to join their team so the successful candidate should have excellent problem solving and investigative capabilities and approach their work with diligence and a great eye for detail - here are some of the duties the role will entail: Security governance of projects Policies and standards creation and maintenance Information assurance: Information security risk management Controls testing (policy, PCI, Cyber Essentials) PCI & Cyber Essentials compliance & assessment Security awareness, training and communication Security governance of projects and change Security reporting BAU advice, support and cross team collaboration Key skills/experience Must have previous information security experience, holding at least 1 recognised industry certification such as CISM, CISSP, CISA, CRISC Must be ability to liaise with and translate information to both technical and non-technical stakeholders Must have great communication skills, with a focus on listening and ability to discuss security concerns in an open and rational way Must have an excellent understanding of industry legislation, regulation and standards such as Data Protection, PCI and Cyber Essentials Must have experience of policy management, risk management and controls testing Must have a good general understanding of IT technologies for example, web, cloud, network, infrastructure Must be a team player with a friendly, supportive and inclusive personality