IT Security Analyst

Asure Recruit
07 Apr 2019
06 May 2019
Contract Type
Full Time
IT Security Analyst

Salary: £30,000 - £50,000

Hours: Monday – Friday 9am – 5pm

Location: Tunbridge Wells

About the Company

The company are a multi-brand insurance group who are an Investors in People Gold Champion organisation. You will be joining the IT Security, Risk and Compliance Team and will be making a valuable contribution to the data-centric security strategy. The primary purpose of this role is to support our varied businesses across the company in actively reducing data security related risk.

The Job Role

* Representing the IT SRC Team as part of data security projects and driving the deliverables of the IT workstreams

* Performing BAU tasks including:

* Maintain the IT Security ticket queue by responding to Service Requests, SOW and user-reported incidents

* Daily monitoring of security toolsets to ensure tool health and to respond to security incidents identified during the monitoring activities

* Review change requests as part of Change Approval Board

* Review project security risks as part Solution Design Authority

* You may be expected to join the on-call rota for out-of-hours security incident handling

* Delivery of operational security activities as directed by the Strategic Security Manager

* Maintain, manage and implement Information Security policies and procedures

* Audit compliance against the organisation’s as well as suppliers’ information security controls

* Identify and advise on upcoming legislation changes that affect data security and privacy

* Assist with Disaster Recovery and Business Continuity activities

The successful candidate will have the following skills/knowledge:

General Skills:

* Excellent communication skills, both written and verbal

* Strong stakeholder management and influencing skills

* Excellent attention to detail

* Strong prioritization skills

* Adhere to FCA, TCF and Data Protection Regulations

Essential Skills:

* Strong technical knowledge in security, infrastructure and applications

* Knowledge of security architecture and principles

* Familiar with various types of encryption algorithms and their applications

* A team player, willing to take on additional tasks as needed

Desirable Skills:

* A solid understanding of compliance standards (GDPR, PCI DSS, ISO27001 etc.)

* Relevant security certification (CISSP, CISM, etc.)

* Further Technical certifications would also be desirable

* Experience of managing/monitoring security toolsets, IDS/IPS, SIEM, Web Proxy, etc

* Knowledge of the ITIL or COBIT framework

* Experience of carrying out security awareness training

Similar jobs

Similar jobs