As a Senior Information Security Analyst at Allianz UK, you will be instrumental in executing the companys Information Security strategies and initiatives, focusing on supporting the Governance, Risk, and Compliance (GRC) function and implementing the NIST Cyber Security Framework (CSF) throughout the organization. You will lead day-to-day GRC activities, including designing security controls, enforcing requirements from the Group Information Security Framework, and proactively managing non-compliance issues and mitigating Information Security risks. Salary Information Pay: Circa £65,000 per year. Pay is based on relevant experience, skills for the role, and location. Salary is only one part of our total reward package. About You • You will be developing and implementing an information security controls catalogue, policies, and procedures aligned with the NIST Cyber Security Framework (CSF). • Conducting assessments to identify material gaps, analyzing potential risks, and monitoring progress on maturity uplifting across security functions. • Supporting compliance activities with the Group Information Security Framework, Cyber Essentials, and PCI DSS attestation. • Collaborating with the wider organization to integrate control testing and risk management activities into the existing governance framework. • Assisting cross-functional teams and business units in integrating security measures into business operations. • Facilitating regular reviews and updates of control and risk management processes to remain effective and responsive to emerging threats and changes in the organizational landscape. • Documenting and visualizing reports for governance forums, providing insights and recommendations to inform decision-making and risk management strategy across the business. Essential Skills • Minimum of 4 years of experience in information security, with solid understanding of Information Security control and governance frameworks. • Practical experience of implementing NIST CSF in the financial services sector is highly desirable. • Proven track record of security transformation and delivery of security projects, particularly within a federated organisation. • Strong knowledge of Information Security and compliance frameworks, including NIST CSF, ISO 27001, Cyber Essentials, PCI DSS, and DORA, and the ability to design controls that align with these standards. • Ability to analyse data and generate reports using tools like Excel and Power BI, and experience with data visualisation and interpretation. We support the government scheme “Access to Work” please feel free to ask us about the access to work scheme. Desirable Skills • Skills in creating and maintaining comprehensive documentation, including control matrices, design process flows, and standard operating procedures. • Strong communication and interpersonal skills, with the ability to convey complex security concepts to non-technical stakeholders. • Bachelor’s degree in Information Security, Computer Science, or a related field. A Master’s degree is a plus. • Relevant certifications such as CISSP, CCSP, CRISC, CISM, or ISO 27001 Lead Implementer are highly desirable. What We Will Offer You Recognised and rewarded for a job well done, we have a range of flexible benefits for you to choose from- so you can pick a package that’s perfect for you. We also offer flexible working options, global career opportunities across the wider Allianz Group, and fantastic career development and training. That’s on top of enjoying all the benefits you’d expect from the world’s number one insurance brand, including: • Flexible buy/sell holiday options • Hybrid working • Annual performance related bonus • Contributory pension scheme • Development days • A discount up to 50% on a range of insurance products including car, home and pet • Retail discounts • Volunteering days