Social network you want to login/join with:
Information Security Analyst, Leeds, West Yorkshire
Client: Cloud Decisions
Location: Leeds, West Yorkshire, United Kingdom
Job Category: Other
EU work permit required: Yes
Job Views:
9
Posted:
06.06.2025
Expiry Date:
21.07.2025
Job Description:
Upto £57,500 + Enterprise Benefits (Life Ins/Medical/Pension)
Fully Remote (UK only)
***Please Note: NOT A CYBER SEC TECHNICAL ROLE***
Be part of their high growth Information Security plans as they build the team to x4.
Cloud Decisions has partnered with a leading UK enterprise technology group, one of the top 10 largest employee-owned businesses in the UK, and a major player in global insurance across 100+ countries.
They are hiring an Information Security Assurance Analyst who understands controls & compliance with security regulations and standards. The role involves working autonomously in a small, high-trust team to build InfoSec capabilities, ensure regulatory compliance, and prepare for audits, tenders, or risk reviews.
Control/Compliance Assessment Duties:
* Schedule and Coordinate Assessments: Coordinate control assessments with control owners, asset custodians, and third parties.
* Evaluate Controls: Assess the design and effectiveness of technical and non-technical security controls against policies, standards, and procedures.
* Documentation Maintenance: Keep documentation of assessments and remediation activities current.
* Organise Control Evidence: Ensure all control evidence is organized and accessible.
* Notify Deviations: Notify relevant parties of process deviations.
* Risk Analysis Reports: Produce reports on control deficiencies and their impact on risks.
* Communicate Findings: Clearly communicate issues to security leadership.
* Dashboard and Reporting Input: Update dashboards and reporting databases.
* System Security Plans (SSPs): Support documentation of security requirements for information systems and assist in their testing and ongoing monitoring.
Compliance/Control Improvement Duties:
* Update Processes: Coordinate updates for identified process gaps.
* Enhance Procedures: Assist in documenting and designing improved procedures and tests.
* Propose Enhancements: Recommend control and procedure improvements.
* Reporting Support: Assist in regular reporting on assessment activities.
Audit/Assessment Duties:
* Third-Party Due Diligence: Manage third-party assessments and respond to requests.
* Audit Preparation and Support: Prepare evidence and respond to audit inquiries.
InfoSec Effectiveness - Collaboration/Continuous Improvement:
* Continuous Improvement: Identify and implement process enhancements.
* Training and Development: Train team members on assessment methodologies.
* Vendor Management: Assess vendor BCDR plans and capabilities regularly.
Knowledge of DORA, PCDSS, SARBOX is advantageous but not essential.
#J-18808-Ljbffr