Job Description
We have a fantastic opportunity for an Information Security GRC Analyst to join us in Hove on a 12-month fixed-term contract! You'll support the Head of Information Security and Information Security Manager in working in a supportive team to provide oversight of all Information and Cyber Security Governance, Risk and Compliance activities and issues for the Legal & General Retirements Institutional (LGRI) global pension risk transfer (PRT) business and Business as Usual (BAU) tasks. If you have a passion for promoting InfoSec awareness and GRC standards, then this could be the ideal opportunity for you!
What you'll be doing:
* Understanding security control requirements, as defined in Legal & General’s security policies, standards and IT control framework, and translating them into architecture patterns and solution designs to help advise Project Managers and Developers across the business
* Producing monthly reports to executive and senior management boards detailing the overall security posture and management of Information Security within the division.
* Leading the LGRI Information Security awareness campaigns, generating both broad and focused individual and group targeted information and training campaigns. Working with Group Technology Security to ensure an overall narrative, analyzing results and feedback and recommending changes to future risk, strategy, and policies to improve LGRI’s overall security maturity and posture
* Assisting in the evaluation of third-party suppliers' security due diligence questionnaires and assisting business partner contracts and security questionnaires during tender and bid processes
* Managing and owning the production of periodic metrics and control assurances, recording evidence provided and completing control frameworks
Qualifications
Who we're looking for:
* A good understanding of general security practices such as encryption, IAM, security information and event management etc. and supporting technologies
* Prior experience in delivering highly technical and innovative security engineering / design products
* You'll also enjoy collaborating with a variety of colleagues at different seniority levels
* Experience with report writing, creating metrics, or risk management would be great
* If you have an analytical mindset with an enthusiasm for Information Security then we want to hear from you!
#J-18808-Ljbffr