Information Security Grc Analyst - Croydon, United Kingdom - Harris Federation

Harris Federation

Verified Company

Croydon, United Kingdom

2 weeks ago

Posted by:

Tom O´Connor

beBee Recruiter

Description

We are looking for an Information Security GRC Analyst to join our central Information and Cyber Security team at the Harris Federation Head Office.

This is a mid-senior role, though junior applicants are encouraged and will be supported by a supplementary training plan.

The new Information & Cyber Security team is responsible for all things security operations, governance, risk, and compliance. It is a brand-new function at the Harris Federation.

This is a fantastic opportunity to join and shape the future of Informationand Cyber Security at a hugely successful multi-academy trust.

With a supportive group of dedicated professionals accessible, you will become part of a growth where you can effect a real positive change.

About Us
The Harris Federation is a leading education charity with 52 Harris primary and secondary academies across London and Essex. The founder, Chairman and sponsor of the Harris Federation, Lord Harris of Peckham, opened our first school in 1990.

We now educatealmost 40,000 young people and closing the gap between children from disadvantaged backgrounds and their peers has always been a core mission.

The Harris Federation has a track record of accomplishment in achieving success through rapid school improvement and has built an unrivalled reputation for running outstanding academies in London.

Our central team comprises a dedicated, driven group of departments working centrally to provide support across the Federation and all of our academies.

Across a multitude of key departments, we maintain an outstanding body of staff all integral to supportingcentral and academy finance, HR, Data, Estates management, Talent and many more.

Main Areas of Responsibility

As part of your role, you will:

Create and maintain policies, standards, and guidelines related to Information Security.
Design, implement, and manage third party security risk management practises.
Design, implement, and manage training and awareness initiatives.
Audit compliance to internal policies, standards, and guidelines. Producing and tracking progress of corrective action reports.
Conduct risk assessments.
Stay abreast of industry standards and frameworks. Most notably ISO27001, NIST, CIS, Cyber Essentials, Cyber Essentials +
Support with projects, and supplier onboarding, ensuring necessary contractual clauses are embedded into contracts.
Support with the creation of routine and adhoc reports utilising metrics.
Support the Federation to achieve and maintain compliance with relevant legislation, such as DPA, GDPR.

Attitudes & Behaviours

Customer obsessed. You understand the importance of your role with reference to supporting c. 40,000 students in realising their potential.
Excellent communicator.
Embraces strengths, whilst understanding your own, and team member weaknesses.
Team player. Understands the importance of healthy conflict in striving for excellence and attainment of common team objectives.
Methodical, analytical, problem solver.
Creative and enthusiastic.

Qualifications & Experience Evidenced experience is always preferred. The omittance of any qualification or certification should not discourage aspiring applicants. We embrace that no-one is an expert in everything.

Cyber Bootcamps, such as CAPSLOCK.
Degree or equivalent.
Industry certifications such as, but not limited to: CISSP, CRISC, ITILv4, PRINCE
Evidenced contribution to security forums & communities.
Evidenced experience in giving, or receiving mentorship related to security.
Experience working in a GRC focussed role.
Experience working in a nonsecurity role with highly transferable skills. For example, Risk Management and L&D professionals.

Professional Development & Benefits
Our people are at the heart of our success.

We have developed a strong culture of collaboration and best practice, with professional development and career planning at its centre.

We invest in our staff with support, coaching, mentoring, and a wide rangeof top-quality training programmes delivered at every level to senior leadership.

We look for talented individuals who share our vision for creating exceptional places of learning, and are committed to ensuring that every child in London has access to the best possible education.

In addition to the opportunities for career progression, training and development, we also offer a competitive rewards and benefits package which includes a Performance and Loyalty Bonus, Pension Scheme, a Wellbeing Cash Plan, electric car scheme, 26 days'annual leave (plus bank holidays) for non term-time only employees, and many other benefits.

We offer flexible working in the form of "Core Hours" and potential for hybrid working.

Safeguarding Notice

Equal Opportunities

As a provider of employment and education, we value the diversity of our staff and students, and all our staff are equally valued and respected.

We are committed to providing a fair, equitable and mutually supportive learning and working environment for ourstudents and staff.