Overview
Cyber Security Analyst - Governance, Risk and Culture at Baringa. Join to apply for the Cyber Security Analyst - Governance, Risk and Culture role at Baringa.
About Baringa
We set out to build the world’s most trusted consulting firm – creating lasting impact for clients and pioneering a positive, people-first way of working. We work with everyone from FTSE 100 names to bright new start-ups, in every sector. You’ll find us collaborating shoulder-to-shoulder with our clients, from the big picture right down to the detail: helping them define their strategy, deliver complex change, spot the right commercial opportunities, manage risk, or bring their purpose and sustainability goals to life. Our clients love how we get to know what makes their organisations tick – slotting seamlessly into their teams and being proudly geeky about solving their challenges. We have hubs in Europe, the US, Asia and Australia, and we work all around the world - from a wind farm in Wyoming to a boardroom in Berlin.
What You Will Be Doing
* Develop a complete understanding of Baringa’s technology and information systems.
* Lead in the response to RFPs/audits, including supplier security due diligence and third-party audit and assurance activities.
* Identify and communicate current and emerging security threats and cyber risks.
* Support a program of awareness-raising and training to deliver compliance and to foster a cyber conscious culture across the company.
* Assist with the definition, implementation and maintenance of corporate security policies and procedures.
* Provide ‘hands on’ assistance, particularly in technical control implementation or administration where needed.
* Align organisational security strategy and infrastructure with overall business and information technology strategy.
* Manage company compliance with information security, policies, standards, contractual obligations and guidance through business managers and champions providing advice, support and guidance on risk based good practice.
* Lead on and produce technical security MI in support of governance and vulnerability management engagements.
Your Skills and Experience
* Experience in full-time operational Security GRC, or Cyber Security role.
* Experience of the Microsoft and AWS Technology Stack.
* Experience utilising emerging technologies to design and implement security solutions, monitoring and improving those solutions while working with a Cyber Security team.
* Knowledge of security considerations for cloud computing across Microsoft Azure, AWS and Google Cloud Platform (GCP).
* Thorough understanding of relevant industry security standards and protocols including ISO27001, NIST, NSCS CAF, SOC, NIS 2 Directive and NCSC Cloud Security Principles.
* Ability to use logic and reasoning to identify the strengths and weaknesses of IT systems, while seeking out vulnerabilities in IT infrastructures.
* Risk assessment procedures, policy formation, role-based authorisation methodologies, authentication technologies and security attack pathologies.
* Growth mentality with excellent problem-solving skills, willing to assist in all areas of Cyber and to learn new technologies & processes.
What a Career At Baringa Will Give You
Putting People First.
Benefits
* Generous Annual Leave Policy: 5 weeks of annual leave, plus an additional 2 weeks after 5 years continuous service.
* Flexible Working: Hybrid working policy and flexibility around unpaid leave.
* Corporate Responsibility Days: 3 days per year for social and environmental causes.
* Wellbeing Fund: Annual fund to support personal wellbeing activities.
* Profit Share Scheme: All employees participate in the Group Profit Share Scheme.
Diversity and Inclusion
We are proud to be an Equal Opportunity Employer. We believe that creating an environment where everyone feels a sense of belonging is central to our culture and that diversity is paramount to driving creativity, innovation, and value for our clients and for our people.
Join us
All applications will receive consideration for employment without regard to race, ethnicity, religion, gender, gender identity or expression, sexual orientation, nationality, disability, age, faith or social background. We do not filter applications by university background and encourage those who have taken alternative educational and career paths to apply. We would like to actively encourage applications from those who identify with less represented and minority groups. We operate an inclusive recruitment process, ensuring reasonable adjustments where needed. Please contact a member of our Recruitment Team to discuss further.
Position details
* Seniority level: Mid-Senior level
* Employment type: Full-time
* Job function: Information Technology
* Industries: Business Consulting and Services
#J-18808-Ljbffr