_________________________
______________________
_______________________
______________________
_____________________
____________________
______________________
_______________________
______________________
_______________________
Information Security Analyst £45,000 per annum Hampshire, Farnborough The Information Security Analyst will be responsible for policies, standards and procedures that fall within the scope of our ISO27001 accreditation. This role requires a deep understanding of information security principles, regulations, and best practices, as well as the ability to communicate and collaborate effectively with stakeholders across the organization. Responsibilities: Maintaining the company ISMS and onward maintenance of ISO27001 certification. This includes keeping policies current and evidence up to date. Ensure required procedures are followed and evidence provided. Organise, run and minute regular periodic meetings as defined and required by the ISMS Policies. Candidate Profile In Depth knowledge of ISO 27001 standards Knowledge of ISO31000 & ISO22301. Good knowledge of OWASP and NCSC Experience of working within an InfoSec focused role. Able to solve problems identified through audit, risk assessment or incidents. Proven experience in implementing ISO27001 and maintaining the certification. Beneficial skills Knowledge of DevOps and Dev Sec Ops. Good technical knowledge of Cloud and on-premise network, infrastructure, and application security plication security Spectrum IT Recruitment (South) Limited is acting as an Employment Agency in relation to this vacancy.
Information Security Analyst £60,000 - £70,000 per annum Full time - City - Hybrid Sponsorship is not available for this opportunity Is this the Information Security Analyst role for you? Crone Corkill are partnered with a very well respected organisation in the Legal sector as they look to add a new member to the Information Security team. Partnering with the Information Security Manager, you'll ensure the business aligns to ISO27001, conduct audits related to ISO27001 & NIST, generate InfoSec dashboards & metrics, as well as handle the onboarding of new suppliers. Due to the small size of the team, you'll often be required to work independently and assist with a variety of InfoSec related tasks. What will you do as an Information Security Analyst? Onboard suppliers and perform risk assessments, third party questionnaires, due diligence, gap analysis and make suggestions accordingly Ensure Security best practice is followed and ISO27001 compliance is met Generate metrics/dashboard for management reviews Assist in overseeing the ISMS from a GRC perspective Provide Information Security awareness training to tech & non-tech teams Plan audits, risk assessments and control implementations related to ISO27001 Provide a sound understanding of Cloud Security & Cloud Infrastructure principles/controls Assist the SecOps team with incident handling, response and escalations, as well as ensuring processes are documented in line with ISO27001 Manage technical risks via vulnerability management oversight & gap analysis, whilst also overseeing DLP alerts and creating reports What skills do you need as an Information Security Analyst? ISO27001 NIST Supplier onboarding Generating metrics & dashboards The ability to work independently Good knowledge of Cloud Security (open on platform) Experience in the Legal or Professional Service sectors (advantageous) Relevant InfoSec/Cyber certifications (very advantageous) What's in it for you? In return, you'll have the opportunity to work with a diverse group of colleagues, with inclusion at the forefront of their working culture. Though working in a small team, the business are dedicated to providing the training and development needed for you to be successful within the role - Whilst also giving you the chance to be deeply involved in a range of upcoming projects.