Junior Information Security & Business Continuity Analyst
Origo Edinburgh, Scotland, United Kingdom
We are a leading FinTech company based in Edinburgh, dedicated to improving the operational efficiency of the UK’s financial services industry.
Established in 1989, we work collaboratively with financial services companies to develop solutions and services to transform operational efficiencies for all market participants, ultimately improving financial outcomes for the consumer.
Our team of experts have extensive knowledge and experience in the financial services sector and are passionate about delivering solutions that make a difference.
The Role
We are seeking a Junior Information Security & Business Continuity Analyst to join our team. This role is crucial in ensuring the security and integrity of our information systems and data. You will be responsible for implementing and maintaining security measures to protect our organisation's assets from cyber threats and ensuring compliance with industry standards.
Key Responsibilities
* Assist in the planning and implementation of security controls and testing to ISO27001 standards.
* Perform business impact analyses (BIA) across key technology processes, systems and facilities and identify any gaps that may exist in critical information gathered and recorded.
* Communicate any significant changes in Business Continuity plans to the Information Security (IS) Manager.
* Support the IS Manager in Disaster Recovery (DR) planning activity, ensuring that alternate facilities are provisioned and ready in the event of a disaster.
* Respond to customer security questionnaires in support of their third-party assurance obligations.
* Work with business units to ensure that Business Continuity Plans are being produced and maintained in a consistent manner.
* Threat Management – Assess threats and work with business units in articulating impact.
* Plan, schedule, conduct and report on systems security audits, ensuring any corrective/preventive actions identified are tracked to a satisfactory conclusion.
* Document and report enterprise risk and compliance issues according to required timelines.
* Assist in preparation and review of corrective action plans associated with penetration test findings.
* Provide support and guidance to staff undertaking security awareness training. Track staff completion of training modules and manage license levels.
* Respond to security incidents.
Essential knowledge, skills and experience
* Must have a good understanding of Information Security methodologies, standards and technologies, including ISO27001.
* Previous experience working in an Information Security or Enterprise Risk role.
* Have a good awareness of Business Continuity and IT standards, policies and frameworks including ISO22301/BCMS.
* Good communication skills with the ability to multi-task and prioritise workloads.
* Business Continuity Management knowledge with proven experience of delivery in this area.
* Knowledge of IT with an understanding of system architecture inter-dependencies.
* Strong documentation, analytical and presentation skills.
* Ability to work on own initiative.
* Applicants must have the Right to Work in the UK.
Desirable knowledge, skills and experience
* Qualifications such as CISA, CISM, CEH or ISO27001 Lead Implementer/Auditor.
* Experience of senior management engagement and relationship management.
* Previous experience in dealing with Information Security incidents.
This role offers a fantastic package. The salary on offer will be competitive, commensurate with your skills and experience. On top of this there is a generous benefits package, which includes:
* Annual performance related bonus.
* 11% non-contributory pension.
* Critical illness cover.
* Private medical insurance.
* Group life cover (4 x annual salary).
* A very useful flexible benefits package which allows you to choose your preferred options from a selection including additional holidays, bicycle leasing scheme, golf/sports club membership, travel passes, etc.
Origo is a Disability Confident Employer
We believe that a diverse workforce brings unique perspectives and ideas. We welcome applications from candidates of all backgrounds.
Seniority level
Associate
Employment type
Full-time
Job function
Information Technology
#J-18808-Ljbffr