Job Introduction
Role Title: Information Security Analyst – GRC
Location: Leeds (Hybrid)
Contract: Permanent
Working Pattern: Full Time (37.5 hours p/w)
Salary: £50,000 - £60,000
We have an exciting opportunity for an experienced Information Security Analyst to join our established GRC Information Security team in Leeds!
As a trusted expert in Information Security and Risk Management, you’ll play a key role in shaping how new systems and processes are developed, ensuring they meet essential security and compliance requirements including ISO 27001, PCI-DSS and industry best practise.
You’ll also lead security risk assessments and manage the remediation of vulnerabilities, risks, and audit findings across MPS’s networks, systems and software applications, driving a secure-by-design methodology throughout the organisation. By helping to deliver consistent, high-quality security assurance and controls, you’ll support the reduction or remediation of information security risks across the organisation.
Role Responsibility
As our new Information Security Analyst, you will also:
1. Monitor for and provide robust challenge of emerging risks and issues arising from business activities which fail to deliver appropriate and consistent outcomes for our members
2. Work with Security Operations to identify further security awareness requirements following incidents and current threats
3. Drive and coordinate remediation of risks and audit findings identified that enhance weakness in MPS security controls.
4. Work on and drive security-related projects, to ensure security requirements have been met and call out any risks identified against MPS risk appetite
5. Liaise with relevant teams in specialist areas to manage security and ensure contractual and regulatory requirements are met
The Ideal Candidate
We are looking for:
6. Significant experience of information security from a technical and compliance perspective
7. Working knowledge of security domains, auditing standards and frameworks and risk analysis frameworks including ISO 27001 and Cyber Essentials etc
8. Experience of managing technical projects from design to implementation
9. Excellent attention to detail, analytical skills and an ability to analyse complex technical information in order to identify patterns, trends and risks
10. Strong stakeholder management experience
11. Ability to communicate with a range of technical and non-technical team members and other relevant individuals at all levels of the business
Package Description
12. Discretionary on-target bonus of 10%. Up to a max 20% based on performance
13. 11% pension contribution (3% from you, 8% from us – optional additional matched 3% contributions, e.g. 6% from you, 11% from us)
14. 25 days annual leave. Flexible public holidays and option to buy/sell additional leave
15. Private Medical Cover
16. Car Salary Sacrifice scheme
17. 6x salary death in service
18. Holistic health and wellbeing support package
19. A truly flexible hybrid-working arrangement
20. A culture that promotes inclusivity, wellbeing and rewards hard work