Summary We’re looking for an Information Security Analyst to join our team and play a key role in risk and compliance, driving change and awareness, assisting with security requirements, supporting the information security framework and assisting business-wide colleagues to find the right solution for them and the National Trust. What it's like to work here Your contractual location will be our head office in Swindon and there will be an expectation for you to attend the office. However, there is flexibility on where you are based at other times. You will be required to work at a National Trust location for 40-60% of your working week. This will be discussed in more detail at interview. What you'll be doing You’ll be a proactive advocate of information security good practice with respect to governance, risk and compliance (GRC), providing assurance of the completeness and effectiveness of security controls across the National Trust’s businesses. You will understand the security risk that the Trust may face and what controls are needed, or in place, where vulnerabilities have been found.? You’ll undertake risk assessments ensuring risks are identified, raised, and managed effectively with actions agreed upon and delivered on time, and information kept up-to-date and accurate. You’ll enhance the Trust’s security culture by supporting ongoing training and raising awareness of various related security topics. You will ensure that projects are meeting all security requirements, managing all stakeholder relationships, improving, and developing processes and engagement across the business. This is a great opportunity for an individual who is looking to make their next step up in their career and advance their skills and experience with a major charitable organisation that will offer development and career progression. Who we're looking for Experience working in information security GRC capacity with broad and solid understanding of information security concepts and risks. Interpersonal skills for working with cross-functional teams and managing key business and IT stakeholders. Strong working understanding of Data Protection and GDPR, information security management frameworks such as ISO/IEC 27001 and NIST; and PCI DSS. Experience with IT Infrastructure and cloud technology including, Hybrid environments would be desirable but not essential. Qualified to CompTIA Security or equivalent and you will be working towards professional exams in the field of Security frameworks, risk management or assessment and testing. ISO 27001 Lead Auditor/Implementer and/or CISM are not essential but very desirable. Strong MS skills using MS Word, Excel, PowerPoint, and Outlook The package The National Trust has the motto ‘For everyone, for ever’ at its heart. We’re working hard to create an inclusive culture, where everyone feels they belong. It’s important that our people reflect and represent the diversity of the communities and audiences we serve. We welcome and value difference, so when we say we’re for everyone, we want everyone to be welcome in our teams too. •Substantial pension scheme of up to 10% basic salary •Free entry to National Trust places for you, a guest and your children (under 18) •Rental deposit loan scheme •Season ticket loan •EV car lease scheme •Perks at work discounts such as gym memberships, shopping discount codes, cinema discounts •Holiday allowance up to 32 days relating to length of service, plus holiday purchase scheme, subject to meeting minimum criteria. •Flexible working whenever possible •Employee assistance programme •Free parking at most Trust places Click here to find out more about the benefits we offer to support you.