Overview
An exciting new opportunity has arisen in the Linnaeus Group for an Information Security Analyst. Working for one of the UK’s leading and rapidly growing veterinary groups, we are looking to expand our team.
This role will assist the Head of Information Security in maturing the capability of the security environment which is aligned with the needs of the business. The position is fundamental for Linnaeus, as it will help them to operate as securely as possible and ensure that the right governance, processes and cyber tooling are in place.
Main purpose & goals
* Identify and action security incidents. Utilising tools such as Crowdstrike, Intune, DLP policies etc.
* Work with stakeholders to remediate vulnerabilities across the technology landscape.
* Work with stakeholders to manage ongoing activity such as patch/fixes and produce patch status reports.
* Aid with the completion of Vendor Risk Management to ensure supplier due diligence and risk assessments/reporting are completed and data privacy/PIA compliance.
* Play a key role in the GDPR workgroup at Linnaeus.
* Actively participate in project activities and represent the Information Security Team. Aid the team in progressing the NIST score through project work, through to assessment.
* Conduct internal audits and work with the identified stakeholders to develop and implement recommendations for improvement.
* Provide timely technical advice to cross-functional teams on all InfoSec and Data Privacy matters.
Specification
Essential
* Recent experience of working in an Information Security Team.
* Maintaining security policies and documentation.
* Risk assessments and reports.
* Housekeeping on security logs Azure/Office 365.
* Website vulnerability scanning, understanding risks and remediation activities.
* Working with legal, audit and compliance stakeholders during audits.
Desirable
* Involvement in information security training programs.
* Experience working in healthcare or pet care or the services industry.
* Experience with the NIST framework.
Knowledge
Essential
* Global standards e.g. NIST, ISO 27001, ISO 27002, PCI DSS, GDPR.
* Office 365 Security & Compliance toolset.
* Threat management.
* Firewall principles.
* PCI DSS compliance.
Qualifications
* Certified in Cybersecurity (CC) or equivalent.
* Systems Security Certified Practitioner (SSCP), Certified Cloud Security Professional (CCSP) - Desirable.
#J-18808-Ljbffr