Information Security Analyst

Venturi Ltd
£50000.00 - £53k pa + + Bonus and benefits
09 Aug 2017
16 Aug 2017
Information Security Analyst Surrey Up to £53,000 Bonus and Benefits Information Security / ISO27001 / PCI DSS / audit / analyst / CISSP / vulnerabilities / IT Security We are currently seeking a talented Information Security Analyst to work for our global client. You be responsible for supporting the Information Security Manager in operating, improving and ensuring compliance with the companies Information Security standards. Work closely with business stakeholders and technical specialists throughout the organisation to deliver processes and tools that will allow information security requirements to be met. The Role: - The Information Security Analyst will be responsible for managing and completing security action plan tasks in the timescales that have been communicated the Group. - The Analyst will need to work closely with the business and IT to ensure requirements are understood, and provide regular updates to the Information Security Manager in regards to the security actions they are responsible for. - The role requires the individual to have experience with implementing, maintaining, and/or auditing the ISO 27001:2005/2013 or similar security standard, and conducting organisation-wide risk role you will work closely with business areas, project teams and technology experts through - Qualify and quantify risks that have been identified and propose action plans to reduce them ? Follow up on deficiencies identified in security action plans and audits, to ensure that appropriate remediation measures have been taken within the agreed timescale. - Review the status of security deficiencies / risks with the Information Security on a weekly basis. - Ensure information classification policies are aligned to the Group data classification methodology. - Management of third party suppliers to ensure security obligations are applied. ? Assist the ISM in undertaking security due diligence on third party suppliers including site visits as required. - Ensuring risks/vulnerabilities identified are mitigated - Interpreting and applying information security policy and standards. Developing, implementing, maintaining, and overseeing enforcement of policies, procedures, and associated plans based on industry-standard best practices. Skills and Attributes Required: - Minimum of 3 years experience in Information Security\IT Audit\Internal control or similar role - Ability to audit vulnerabilities and mitigate risks, be an expert in Business Analysis and interpreting system and application requirements, be an expert in process design analysis & designing secure solutions - Highly experienced in defining security related processes. - Experience of acting as an interface between the business and IT departments to implement change - Experience in IT security audits and there requirements - Knowledge of ISO standards 27001/27002,Knowledge of ISO 9000, ISO 20000 (ITIL) would be a plus - Knowledge of PCI DSS - CISSP certification would be desirable

More jobs like this