Info Sec Analyst - Derby, United Kingdom - Xpertise Recruitment Ltd

Xpertise Recruitment Ltd

Verified Company

Derby, United Kingdom

3 weeks ago

Posted by:

Tom O´Connor

beBee Recruiter

Description

Information Security Analyst

Salary - 40K

Derby (flexible)

Develop and maintain the business's information security policies and procedures, ensuring that effective controls and reporting mechanisms are in place.
Ensure the business's computer networks are monitored for security issues and penetration tested as required. Respond proactively to any issues identified and regular security KPI reports for IT senior management to highlight key security risks.
Investigate security breaches and other cyber security incidents performing analysis to document risks and create incident reports.
Work closely with the Infrastructure team on system design, implementation and then perform regular tests to uncover network vulnerabilities, ensuring at all times systems confirm with the business's security compliance policies and standards.
Interact with company project teams ensuring information security is built into system design and any issues are responded to throughout project management lifecycles.
Regularly review company infrastructure in relation to ISO27001 and NIS-D compliance and identify risks of noncompliance, working with the Infosec manager to develop remediation plans.
Recommend changes in line with legal, technical and regulatory information security guidelines and requirements
Create and drive forward security communication and education plans to promote the business's cyber security strategy and principles across the business.
Work closely with the Infosec manager to implement the Information Security Strategy and supporting programme plan.
Be a communication and escalation point internally for addressing business security issues, producing problem reports and developing solutions.
Research and stay up to date on security trends, standards and enhancements, making recommendations to management on potential improvements.
Liaise with the business, and Group security function. Where necessary, work closely with the Internal and Group Audit teams to support the delivery of annual assurance and compliance plan.
The above list is not exhaustive, and on occasion, the role may need to undertake other reasonable requests as required by their line manager, in line with grade and competence
All staff have a responsibility and accountability to ensure that their daytoday activities support our commitments under the Sustainability Policy Statement and relevant management systems (e.g. ISO14001 or ISO50001); and to act in a sustainable mannerand minimise impact on the environment.