Information Security Analyst
- Recruiter
- TLP Consultancy Ltd
- Location
- Redhill
- Salary
- Competitive
- Posted
- 10 Oct 2017
- Closes
- 02 Nov 2017
- Sectors
- Accountancy
- Contract Type
- Permanent
- Hours
- Full Time
Information Security Analyst
Reigate, Surrey
GBP50-55,000 + Excellent package (Bonus up to 25%, pension up to 15%)
(Pen testing, CISSP, CISM, CRISC, GIAC, ISO27001)
Fast paced financial services company have an immediate need for 2 information security Analysts!!!!!!!!!
• To protect information systems by identifying and solving potential/actual information security issues and implementing improvements and prevent them from reoccurring
• Developing and implementing security policies and procedures, security risk analysis, risk profiles, response procedures and formally documented security controls,
• Reviewing security violation reports and enforcing security policies and procedures across the organisation, investigate escalated security exceptions, provide oversight over day-to-day security administration procedures, and keep management appropriately informed of all pertinent security matters and issues
• Responding to security incidents using intelligence to form risk mitigation strategies for emerging threats and cyber risk
• Providing key risk indicators and MI to substantiate the current risk posture and demonstrate an evolving, yet improving threat mitigation strategy.
Functional Responsibilities
• IT Governance
To support the Information Security Manager in serving as the information security liaison for some new and ongoing business initiatives, ensuring secure implementations and practices on a company wide scale.
• Policy Administration
Building and implementing policies and procedures related to information security, data classification and incident handling.
• Information Security Operations
To support the Information Security Manager in overseeing and where appropriate escalating all aspects of Information Security Operations which includes incident detection, incident response, antivirus, network monitoring, data loss prevention and vulnerability detection/remediation activities.
• Compliance
To support the Information Security Manager in coordinating all compliance related requirements proactively and lead the ongoing security maintenance activities with continual auditing of systems and practices
• Maintain competence
To maintain your own competence and personal development
Qualifications
• Industry certifications such as CISSP, CISM, CRISC, GIAC, ISO27001 with desired experience of Active Directory, Vulnerability testing, Endpoint Security solutions, Networks, Firewalls and Penetration Testing.
Skills and Knowledge
• Information Security Management experience in a similar role
• Familiarisation of Governance Models, Risk Assessment frameworks and Security Management Systems, ideally IS27001:2013.
• Persuasive, yet influential approach to information risk;
• Motivated, ambitious attitude focused on delivery;
• Influencing skills;
• Excellent problem analysis and resolution skills;
• Excellent verbal, written communication and interpersonal skills, with the ability to present complex technical concepts in a clear and concise manner;
• Understanding of business processes;
Experience
• Demonstrable experience in the following areas:
• System Administration, Network Security, Problem Solving, Information Security Policies, Process Improvement, Strategic Planning, Problem Solving, Analysing Information
• Protecting intellectual property data and working with third parties to establish robust solutions to further protect our information
• Successfully implementing policies, standards and processes
• Third party due diligence, RFI's and audit inspection
• Protection mechanisms and governance in a progressive organisation with significant amount of change
• Working within Financial Services desired though but not essential