Security Compliance Analyst

Recruiter
Adalta Recruitment Solutions Ltd
Location
Stoke-on-Trent
Salary
£45k - £60k pa + benefits
Posted
25 Sep 2017
Closes
03 Nov 2017
Sector
Accountancy
Contract Type
Permanent
Hours
Full Time
My client who are an international organisation are looking for a Security Compliance Analyst to be responsible for maintaining solid knowledge of IT Security and Compliance concepts around industry regulations and standards, controls, audit requirements, compliance, identity management, development, and IT infrastructure. This function supports IT-related security and compliance functions. This position can also maintain and execute procedures for enforcing Security Policies & Standards, regulatory requirements, contractual agreements/obligations and any other IT-related security and privacy requirements. You must possess a strong understanding of security infrastructure components, good analytical and troubleshooting skills and have the ability to perform problem resolution and make process improvements. Role Requirements: - Extensive experience working with IT or Information Security, legal, audit, compliance - 10%-20% travel for audits and offsite meetings - Bachelor's degree in Information Systems, Business Management, Computer Science, Engineering, Accounting, Finance, Audit - Professional certification(s) (CISA, Security+, MCSE, CNA/CNE, CISSP) an asset. - Strong knowledge of general controls and processes - Experience in a Security Administrator role - In-depth knowledge of statutory and regulatory requirements relating to privacy, data security and related topics for the financial services and health industries - Commitment to excellence in customer service and the ability to work both independently and as part of the IT Security and Compliance team is essential. - Ability to analyze business and IT processes and effectively communicate the compliance risks to the company - Experience building and maintaining relationships and keeping informed regarding relevant changes within the organisation - Ability to analyze new laws and regulatory requirements as they relate to security and compliance and present the overall risk to the company - Experience contributing to projects and multi-tasking with diverse groups and locations - Strong knowledge of IT systems, application, infrastructure, network components and processes - Ability to participate as part of a virtual team Key deliverables: 60% - Support and maintain systems and processes related to security and compliance functions - Educate management and staff regarding risks and controls pertaining to security-related concepts, compliance and audit requirements - Test and plan implementation of new or improved controls to keep the organisation current with industry standards and compliance requirements - Collaboration with other departments (i.e. RAS, Privacy, IT Legal) and industry groups on IT compliance-related issues and concerns - Monitor and communicate metrics on a timely basis to Manager and Lead Security Analyst concerning Security Policies & Standards, PCI, GLBA, HIPAA, License contract/obligations, etc. - Participate in internal and external IT audit activities, vendor audits (including software audits), client audits, state DOI exams, RFP/due diligence reviews, SOX, SSAE16 - Support and maintain security and compliance systems 30% - Project Support - Participate on medium to large projects - Manage multiple projects/issues concurrently - Organise and participate in meetings required for each project - Provide Lead Security Analyst or Manager with a weekly status report - Identify and inform Lead Security Analyst or Manager of any issues, concerns, or vulnerabilities within the project - Accountable for delivering project plans, test plans, tasks and communicating progress or issues on projects - Participate in cost benefit analysis, product proof of concepts and development of project charters as requested 10% - Technical Leadership of Systems - Model effective technical and professional skills, and share knowledge with others - Provides day-to-day monitoring of application and performance of security and compliance systems - Identify and respond to application events and incidents - Identify and resolve problems and issues in a timely manner Key Responsibilities: - Achieve individual performance targets - Understands what excellence looks like and strives to achieve this - Awareness of team and department performance and how individual performance contributes to this - Understand key drivers behind business change and support implementation - The customer experience is enhanced through the application of TCF principles - Put the customer at the centre of everything you do and deliver fair customer outcomes - Understand and apply regulatory (including TCF) requirements in your role - Able to articulate service expectations and associated performance standards - Identify local CI / PI initiatives and help to embed these within the immediate team - Demonstrate engagement through personal and departmental performance - Support immediate team and positively demonstrate company values and behaviours - To embed and live the company values in everything you do - Adhere to Information Security policy For future opportunities please follow Adalta on LinkedIn for all our latest jobs, interviews tips and market insights Please follow Adalta here on LinkedIn.
This job was originally posted as www.jobsite.co.uk/job/959094413