Information Security Assurance Analyst - Chatham, United Kingdom - OneSavings Bank Plc

OneSavings Bank Plc

Verified Company

Chatham, United Kingdom

3 weeks ago

Posted by:

Tom O´Connor

beBee Recruiter

Description

In this role, you will support the Information Security programme and framework.

You will focus on core areas such as risk management, third-party security due-diligence reviews, ensuring compliance with legal, regulatory and relevant security standardssuch as ISO 27001, PCI DSS and the UK data protection act / GDPR.

You will also support the security awareness and training activities as defined by an annual schedule of targeted training and testing across the Group.

Your responsibilities will include

Assisting with implementation, monitoring and assurance reviews of IT security controls
Supporting the cyber incident response activities during the initial response analysis, containment and recovery phases
Maintaining information security frameworks, policies, standards and guidelines
Implementing process improvements and efficiencies as defined by the agreed service improvement plans
Assisting with the definition and enforcement of configuration standards and policies
Reviewing and responding to alerts from systems including SIEM solutions and vulnerability monitoring services
Supporting the Group's security awareness and training programme ensuring it meets all industry regulations, standards, and compliance requirements
Generating monthly reports that measure employee engagement with security awareness training and trends

We are looking for talented individuals who have the experience and knowledge set out below:

Previous work experience in an Information Security role within financial services with the following experience:
Performing security assessments for IT systems and processes
Conducting 3rd party risk assessments
Creating a security awareness training programme
Use of vulnerability management tools and remediation planning
Strong knowledge of IT Security technologies, principles and practices
Qualifications in or working towards any SANS GIAC Security certifications (Administration, Software, or GSE Expert), ISC2 CISSP, or any security systems vendor administrationlevel certifications

We also believe that your career and how you progress is as unique as your individual personality. We continually support our people so they can become the best version of themselves.