Information Security Analyst – Leeds – Global tech house with pioneering solutions 671
The client is a world-leading technology company, based in Leeds. They employ over 500 people, based in 13 offices around the globe and they work with 12,000 people worldwide.
At the centre of the client's approach is delivering customer-focused solutions of the highest possible quality and making the global communication process smooth for over 2,500 public and private sector clients.
They are looking to appoint an Information Security Analyst reporting to the Head of Information Security. The main purpose of the role is to support the activities of the Information Security Department and to become an SME on the following areas of the department: ISO27001, GDPR, PCI/DSS, risk analysis, and auditing. The analyst will work closely with the Head of Information Security to ensure that the plans and activities of the IS department are completed in accordance with industry best practices.
Key Responsibilities:
1. Perform internal audits of the Information Security Management System.
2. Be actively involved in maintaining/developing the IT Risk register.
3. Support external audits of the Information Security Management System including applying any corrective actions.
4. Support the delivery of Management Review of ISMS and gain agreement from the Board.
5. Work with employees on a global basis to raise awareness of data protection from both a physical and electronic perspective, ensuring effective local processes are in place.
6. Mentor internal IT employees to improve overall IT security awareness and capability.
7. Act as support to the Head of IS, liaising between the Global Sales Team and clients or prospects regarding discussions around technology and its benefits.
8. Support client responses in relation to Information Security.
9. Work with other members of the Technology team to improve internal infrastructure for value, availability, serviceability, and security.
10. Improve the perception of IT by enhancing communication, developing a consultative approach to new implementations, and delivering work items within agreed deadlines.
11. Support the business in aligning to GDPR regulations.
12. Support the business to achieve and maintain LIST X certification.
13. Support and maintain the business to achieve PCI/DSS compliance.
14. Support the creation of robust processes for Business Continuity and Disaster Recovery plans.
Key Performance Indicators:
1. Support the retention of ISO 27001 or equivalent standard.
2. Maintenance of ISMS as measured by approval during Management Review.
3. Completion and publication of audit reports to the Board.
4. Formal acceptance of Management Review of ISMS.
5. Demonstrating support to Global Sales or Operations Teams.
6. Demonstrating positive feedback on the service provided to the business in security and pre-sales matters.
Requirements:
1. Has previously acted in the capacity of Information Security Analyst or similar compliance role.
2. Ability to learn or previous experience of ISO audits including ISO27001.
3. Knowledge of IT Security Products and Services.
4. Developing and maintaining processes and roadmaps for security, risk, and audit programmes.
5. Commercial experience and acumen with the ability to engage C-Level Decision Makers.
6. Negotiation skills to formalize a sales proposition and take it from initial discussion to contract stage.
7. Experience in managing complex sales processes including supporting sales or pre-sales teams – Desirable.
8. Implementing Enterprise-class IT Solutions – Desirable.
9. Budgeting/Financial oversight of a budget – Desirable.
#J-18808-Ljbffr