Information Security Analyst

Location: Hybrid with travel to Northampton 1 day per week

Salary:

Hours: 37.5

The Information Security Analyst reporting directly to the Head of Information Security will play a vital role in ensuring that we protect our customers data and create a culture of security within the business. This is a new role which has been introduced into the business to help deliver our organisations information security program.

Role and Responsibilities

• Help develop and maintain an ISMS in compliance to ISO 27001:2022
• Assist with internal security audits and assessments
• Develop implement and maintain policies and procedures for information security
• Research emerging security threats and identify vulnerabilities
• Report on information security risks
• Monitor and report on Access Controls
• Develop a deep understanding of how the Staysure group operates
• Help develop the training and awareness requirements for the business
• Build and develop relationships with key internal stakeholders aligning to our values and developing a security culture across the business

Essential Skills

• Good working knowledge of security risk and control frameworks such as ISO 27001 PCI DSS and ITIL
• Ability to develop information security policies and procedures
• Understanding of a range of security technologies
• Ability to review security controls assess control maturity and suggest improvements
• Experience of assessing security incidents service improvements and IT security risks
• Knowledge of the Data Protection Act 2018 and GDPR
• Knowledge of Disaster Recovery/Business Continuity processes
• Knowledge of cloud technologies