IT Compliance Analyst
Remote (UK based)
£65-85,000 (depending on experience)
Information Security Compliance Analyst - working to secure a suite of digital products that are used by customers who operate in highly regulated environments.
As such your work is essential to the business.
Not working alone of course, you'll be working with an exceptional CISO and wider team of compliance specialists and technology teams.
Key responsibilities
* Prepare for and manage compliance audits
* Ensuring cyber controls are in place
* Focus is on ISO27001, handling the preparation for audit, establishing controls are in place and sufficient to achieve ISO27001
* Providing assistance to the Director of Cyber Security, in ensuring all documents/policies/standards/SOP’s are up to date
In more detail
* Support Cyber Security programs with regards to industry standard certifications, regulatory licensing for SDS.
* Liaise with all areas of the business to ensure cyber security standards are being adhered to.
* Manage internal and external security assessments and risk analysis’.
* Perform ongoing audit testing of controls.
* Implementation of automation control assurance monitoring.
* Work with the Technical Compliance team with regards to regulatory audits and compliance.
* Make recommendations regarding policies, standards and guidelines. Assist in the creation of Cyber Security standard operating procedures (SOPs).
* Support Cyber Security and the business to implement and maintain ISO27001 certification.
* Carry out annual review of policies and standards.
* Participate in the TRA process (Threat Risk Assessment) for new projects and applications.
* Assist in closing out audit items and continuous monitoring of risk assessment plans.
We are looking for skills and experience in -
* Experience going through IOS 27001 assessment and achieving full compliance
* Experience with Cyber Security related technologies and large enterprise implementations
* Understanding of frameworks such as NIST, CIS, in addition to GDPR, ISO27001-2022, ISO 270013
* If you hold a valid CISSP, CISA, CISM or equivalent, that would be fantastic. Not essential!
The opportunity in a nutshell -
This business is wonderfully successful in what they do. The team you will join is delivering a world class digital solution. Your role will secure the product and secure the business and customers.
Please get in touch MandyKettle@UnitingAmbition.com