Information Security Analyst - (ISO27001, ISO27002, PCI DSS)

  • Job Reference: HQ00009379
  • Date Posted: 4 January 2018
  • Recruiter: E-Resourcing
  • Location: London
  • Salary: £40,000 to £50,000
  • Bonus/Benefits: benefits
  • Sector: IT (general)
  • Job Type: Permanent
  • Work Hours: Full Time

Job Description

Information Security Analyst - (ISO27001, ISO27002, PCI DSS, Data Protection Act)

Working in the Information Security department you will be part of a team that provides Group wide Information security leadership, governance and support. The team is also responsible for the governance and management of the ISMS (Information Security Management System).
The Information Security Analyst is required to directly create, maintain, support, assess, plan and report on security systems and processes with the Global Support division and other divisions as required.

Key Responsibilities:

  • Security and Risk assessments including vendors, systems, and processes
  • Creation and administration of Standards related to Policy
  • Security control assessment / solution selection support
  • Security Office documentation support: update papers, presentations, minutes from forums, process definition, data asset custodianship
  • Awareness training service provision (e.g. plans, content management, scenario design, service execution, metrics and reporting)
  • Work actively with both technical and non-technical teams to ensure adoption & maintenance of Information security related activities
  • Identify, record and escalate when necessary risks using the Information Security Risk management framework
  • Make recommendations for improvements to Information Security

Skills & Abilities:

  • Excellent communication skills with the ability to build good relationships with a wide range of stakeholders, internal departments and key suppliers
  • Proficient skills in PowerPoint, Excel, Word and Outlook are essential
  • Work as part of a team
  • Pro-actively solve problems
  • Good time management skills
  • Ability to translate technical language to non-technical colleagues

Knowledge & Qualifications:

  • Extensive commerical Information Security experience including ISO27001, ISO27002, PCI-DSS and the Data Protection Act
  • Proven experience in creation and provision of security awareness to others
  • Experience in an Enterprise working environment
  • Basic understanding of ITIL principles
  • Currently holding or working towards relevant security certifications would be an advantage

Please send a CV detailing the above required experience for consideration

Information Security Analyst - (ISO27001, ISO27002, PCI DSS, Data Protection Act)