About the role youre considering
With incidents of cyber-crime frequently in the news, our clients are increasing conscious of the need to protect their systems and data. Our Protective Monitoring service allows our customers to monitor, detect and respond to cyber threats and safeguard their valuable assets, ensuring peace of mind in an increasingly digital landscape.
Successful candidates will leverage their existing experience with monitoring technologies, predominantly SASE systems and security automation tools, to enhance our cybersecurity measures. This role offers the opportunity to further develop and apply advanced skills and expertise in a rapidly Compliance and GRC field, contributing to our proactive defence strategies.
Any UK Location
Hybrid working: The places that you work from day to day will vary according to your role, your needs, and those of the business; it will be a blend of Company offices, client sites, and your home; noting that you will be unable to work at home 100% of the time.
Your Role
The Cybersecurity Compliance Analyst (SASE/GRC) will audit and report to the account security manager on the SSE services ensuring that they are performing security services.
* Continuously monitor SASE security services (Security Service Edge) and assess and report compliance.
* Undertaking scheduled compliance checks in line with the Audit and Compliance Activity plan and continuously identifying processes that require new compliance checks to be initiated, following through with those activities.
* Supporting the ISMS Manager to plan and co-ordinate internal and supplier audits, track remediation of Non-conformities, and facilitate audits conducted by external auditors.
* Maintenance of process documentation and tracking of the Security teams obligations to identify any gaps and ensure progression is made.
* Assess and report compliance activities as part of monitoring and auditing processes
Your skills and experience
* ISO 27001 Lead Auditor or equivalent GRC and auditing experience, including managing non-conformities through to completion.
* Professional experience in SOC tooling such as SIEM and Endpoint services (Splunk, Microsoft Sentinel, Defender for Endpoint etc).
* Relevant industry certifications (e.g., Fortinet, Zscaler, Palo Alto) and strong understanding of network and endpoint security, firewalls, intrusion detection/prevention systems (IDS/IPS).
* Strong analytical and problem-solving skills with knowledge of security best practices and concepts.
* Comprehensive expertise across SOC tooling, network and endpoint security, and auditing aligned with ISO 27001 standards.
Accountable to
You will be accountable to the Account Security Manager
We are a Disability Confident Employer
Capgemini is proud to be a Disability Confident Employer (Level 2) under the UK Governments Disability Confident scheme.
As part of our commitment to inclusive recruitment, we will offer an interview to all candidates who: Declares they have a disability, and Meet the minimum essential criteria for the role.
Please opt in during the application process.
Your security clearance
If you are successfully offered this position, you will go through a series of pre-employment checks, including: identity, nationality (single or dual) or immigration status, employment history going back 3 continuous years, and unspent criminal record check (known as Disclosure and Barring Service). To be successfully appointed to this role, it is a requirement to obtain Security Check (SC) clearance. To obtain SC clearance, the successful applicant must have resided continuously within the United Kingdom for the last 5 years, along with other criteria and requirements.
Throughout the recruitment process, you will be asked questions about your security clearance eligibility such as, but not limited to, country of residence and nationality.
Some posts are restricted to sole UK Nationals for security reasons; therefore, you may be asked about your citizenship in the application process.
J-18808-Ljbffr