- Help to maintain ISO / IEC 27001 accredited certification, this includes:
- Developing consistent and repeatable IT Security Standards, Policies, and Procedures, compliant with the international standard for Information Security Management Systems, ISO / IEC 27001: 2013.
- Contributing to Internal and external audit processes
- Assisting with risk assessments for the ISO27001 Risk Treatment Plan and Statement of Applicability
- Participating in Leadership Team updates
- Contribute to IT Security compliance with the Bank's Internal Control Framework to ensure the accurate completion of testing schedules. This includes monitoring reports and alerts and submitting control evidence to IT Risk
- Contribute to IT Security with the Bank's Swift Customer Control Framework and annual attestation requirements. This includes collecting and collating evidence for the IT Risk team.
- Work with IT Risk and Internal Audit to ensure audit observations and actions are consistently managed and closed within acceptable timeframes.
- Conduct regular vendor and third-party risk assessments. This includes review of Third Party Assurance Questionnaires and Security Management Plans
- Educated to degree level and/or relevant and recognised professional level IT Security accreditation such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Security Plus
- ISO27001 Lead Implementer (beneficial).
- Knowledge and experience implementing of IT Security frameworks, policies, guidelines and standards, including the International Standard for Information Security Management, ISO/IEC 27001: 2013 and Cyber Essentials Plus.
- Experience of working with internal and external auditors and risk departments.
- In-depth knowledge of technical security solutions covering areas such as data leakage prevention, Security Information and Event Management, anti-malware, vulnerability management, threat assessment, encryption, Public Key Infrastructure, and cloud computing.
- Experience in IT Risk Management, including Third-Party Risk management
- Relevant experience in the Financial Services sector.
- Broad understanding of corporate IT infrastructures and technologies.
- Experience of successfully working under pressure to challenging deadlines.
- Ability to communicate effectively to a wide variety of audiences both within and outside of EBRD
- Ability to work both independently and as part of a team.
- Ability to operate sensitively and effectively in a multicultural environment.
- Good organisational and multi-tasking skills.
- Fluency in oral and written English is essential.
- Experience of Security Information and Event Management and tools used to monitor compliance with Polices and Standards.
- Experience with IT Security tools, including: anti-malware, end point detection and response, proxy filtering, security baselining, data loss prevention, network access control, vulnerability management, and firewalls.
- Varied, stimulating and engaging work that gives you an opportunity to interact with a wide range of experts in the financial, political, public and private sectors across the regions we invest in;
- A working culture that embraces inclusion and celebrates diversity;
- An environment that places sustainability, equality and digital transformation at the heart of what we do.
-
Security and Compliance
1 week ago
Office of Rail and Road London, United Kingdom**This role can be based at any of our office locations**: London, Birmingham, Bristol, Manchester, York & Glasgow. · Reporting to the Security and Estates Manager, you will assist the Security and Estates Manager and the compliance team with both Cyber Security and Security comp ...
-
Security and Compliance Lead
3 days ago
Google London, United Kingdom**Minimum qualifications**: · - Bachelor's degree in Cybersecurity, Computer Science, Risk Management, Auditing, a related field, or equivalent practical experience. · - Experience with UK public sector security and compliance. Experience in Cybersecurity, Engineering Program Man ...
-
IT Security Compliance Officer
2 days ago
Digital Waffle London, United Kingdom**IT Security Compliance Officer**: · **Job details**: · - Posted 25 January 2023 · - Salary £ £60000 per annum · - LocationLondon · - Job type Permanent · - DisciplineInfrastructure · - ReferenceML-64-6 · - Contact NameMorgan Lingard · **Job description**: · **IT Security and Co ...
-
Information Security and Compliance
3 days ago
Adecco UK London, United KingdomMy Client based in Central London are looking for a Information Security and Compliance Administrator for a 4-6 week project outside of IR35. This can be performed as a fully remote contract · The company are in the process of undergoing their regulary security and audit checks. ...
-
Security Compliance Associate
1 week ago
ECI - Hong Kong London, United KingdomECI is the leading global provider of managed services, cybersecurity, and business transformation for mid-market financial services organizations across the globe. From its unmatched range of services, ECI provides stability, security and improved business performance, freeing c ...
-
Head of Aviation Security Compliance
1 week ago
Civil Aviation Authority London, United Kingdom**Date**:9 May 2024 · **Location**: London, GB · **Company**:Civil Aviation Authority · **Salary**: £100,000 to £110,000 dependent upon experience · **Contract Type**:Permanent - Full Time · **Security Level**:SC · We are the UK's aviation and aerospace regulator and recognised a ...
-
Cyber Security Compliance Analyst
4 days ago
Recruitment Genius London, United KingdomWe operate as a flat organisation and believe in trusting and supporting our team to operate independently. We pride ourselves on being specialists at what we do, making the most of our consultants' expertise in their fields in order to provide a best-in-classservice to our clien ...
-
Security Compliance/ Assurance Lead
2 days ago
Heathrow London, United KingdomHeathrow is a city within a city, through which millions travel every year. As one of the world's busiest airports, we never stand still - and neither does our Security team. Keeping our passengers and stakeholders safe whilst providing excellent customer service is a complex job ...
-
Experis LTD London, United Kingdom**Security & Compliance SME** · We are on the lookout for a M365 Compliance specialist to join one of the World's most tech progressive organisations. Who has experience working with Microsoft Information Protection and Information Governance, Insider Risk Management and Discover ...
-
MLR Associates Southwark, United Kingdom**Information Security Audit and Compliance Lead**: · - **Global Leading Technology Brand**: · - **Working from home option, WFH with periodic site visits - Leeds/London**: · - **Attractive Salary & Benefits Package and/or day rate inside IR35**: · - **Contract/Permanent hire** · ...
-
Security and Compliance Manager
1 day ago
Opus Recruitment Solutions Ltd Leatherhead, United Kingdom**Security and Compliance Manager | Hybrid | Leatherhead | £50,000-£60,000**Are you keen to build on your Infosec knowledge?** · My client is a fast-growing SaaS provider, with their biggest client being the NHS. · They are looking for a dynamic, high calibre individual to join t ...
-
Security and Compliance Analyst
4 days ago
Digital Waffle United KingdomJob Title: Security Compliance Analyst Location: Birmingham (hybrid) · We are currently looking for a Security Compliance Analyst to join our client, a dynamic law firm based in Central London They pride themselves on their dedication to compliance and security, ensuring that the ...
-
Security and Compliance Analyst
6 days ago
Digital Waffle London, United KingdomJob Title: Security Compliance Analyst Location: London · We are currently looking for a Security Compliance Analyst to join our client, a dynamic law firm based in Central London They pride themselves on their dedication to compliance and security, ensuring that the highest reg ...
-
Security and Compliance Analyst
1 week ago
Knewin London, United KingdomSecurity Compliance Analyst · Information Security · Office Location · Head of Information Risk · 35 hours per week, 9:30am to 5:30pm but additional hours may be required. We are happy to consider agile and flexible working patterns. Our approach to hybrid working allows for ...
-
Security and Compliance Analyst
2 days ago
Digital Waffle London, United KingdomJob Description Job Title: Security Compliance Analyst · We are currently looking for a Security Compliance Analyst to join our client, a dynamic law firm based in Central London They pride themselves on their dedication to compliance and security, ensuring that the highest regu ...
-
IT Compliance and Security Manager
1 day ago
PlotBox United KingdomIT Compliance and Security Manager at PlotBox · IT Compliance and Security Manager · Location: UK - please note if based in Northern Ireland there will be a requirement to work in the office 2 days per week. · We are excited to share this newly created role of IT Compliance ...
-
Security Compliance Analyst
3 days ago
Digital Waffle United KingdomJob Title: Security Compliance AnalystLocation: Birmingham (hybrid)Salary: Up to £70k DOEWe are currently looking for a Security Compliance Analyst to join our client, a dynamic law firm based in Central London They pride themselves on their dedication to compliance and security, ...
-
Security Compliance Analyst
1 week ago
Digital Waffle London, United KingdomJob Title: Security Compliance AnalystLocation: LondonSalary: Up to £70k DOEWe are currently looking for a Security Compliance Analyst to join our client, a dynamic law firm based in Central London They pride themselves on their dedication to compliance and security, ensuring tha ...
-
Security Compliance Analyst
1 week ago
Payfit United KingdomSecurity Compliance Analyst - Apprenticeship · Do you want to help us shape what the future of work will look like and how it will best embrace our life's aspirations? If this sounds like a journey you want to embark on, we may have the right role for you · PayFit is an intuiti ...
-
Analyst, IT Security, Compliance
1 week ago
Disability Solutions London, United Kingdom OTHERPurpose of Job The Analyst, IT Security, Compliance assists the IT Security Principal with IT Security Compliance objectives. This includes: · • ISO / IEC Maintaining accredited certification · • Swift Customer Security Control Framework - evidence collection and collation for ...
Analyst, IT Security, Compliance - London, United Kingdom - EBRD
Description
Requisition ID34487
Office Country
United Kingdom
Office City
London
Division
Information Technology
Contract Type
Fixed Term
Contract Length
3 years
Posting End Date
Purpose of Job
The Analyst, IT Security, Compliance assists the IT Security Principal with IT Security Compliance objectives. This includes:
• ISO / IEC Maintaining accredited certification
• Swift Customer Security Control Framework - evidence collection and collation for Annual Attestation
• Audit observations and actions – ensuring audit actions are addressed withing acceptable timeframes.
• Internal Control Framework – ensuring ICFs are appropriate and completed in a consistent manner.
Accountabilities & Responsibilities
Knowledge, Skills, Experience & Qualifications
QUALIFICATIONS
KNOWEDGE / EXPERIENCE
TECHNICAL SKILLS
What is it like to work at the EBRD?
Our agile and innovative approach is what makes life at the EBRD a unique experience You will be part of a pioneering and diverse international organisation, and use your talents to make a real difference to people's lives and help shape the future of the regions we invest in.
The EBRD environment provides you with:
Diversity is one of the Bank's core values which are at the heart of everything it does. A diverse workforce with the right knowledge and skills enables connection with our clients, brings pioneering ideas, energy and innovation. The EBRD staff is characterised by its rich diversity of nationalities, cultures and opinions and we aim to sustain and build on this strength. As such, the EBRD seeks to ensure that everyone is treated with respect and given equal opportunities and works in an inclusive environment. The EBRD encourages all qualified candidates who are nationals of the EBRD member countries to apply regardless of their racial, ethnic, religious and cultural background, gender, sexual orientation or disabilities. As an inclusive employer, we promote flexible working and expecting our employee to attend the office 50% of their working time.
Please note, all our adverts close at 10.59pm GMT time.