Information Security Risk and Compliance Analyst
Join to apply for the Information Security Risk and Compliance Analyst role at Severn Trent
Here in Technology our mission is simple – deliver and maintain secure and stable IT services, maximising value to our business.
We provide a critical national infrastructure to millions of customers in our region. This makes us a high-profile target for cyber-attacks on our IT systems, which if successful could have disastrous consequences for our customers, colleagues, and the communities we serve.
Our Information Security team protects the business, its people, and customers from daily threats. We are looking for a Cyber Security Supply Chain Analyst to join us.
Your key accountabilities will include:
* Liaising with our supply chain to identify, analyse, and report on their cyber posture
* Review policy and standard artefacts submitted by suppliers
* Articulate contract clauses with suppliers and negotiate the best position for Severn Trent
* Report on compliance obligations and KPIs to appropriate governance groups
* Identify and manage Information Security risk, aligning with control frameworks such as NIST and CIS
* Scope and manage security testing to OWASP Top 10
* Review, test, and monitor control effectiveness
* Build strong relationships with the business and supply chain on Information Security initiatives & threats
* Promote Secure by Design and visibility of testing services
* Collaborate across the technology department and core business to drive continuous improvement
What you’ll bring to the role
* Experience in Information Security and passion for emerging threats
* Experience managing control frameworks and working within a regulated environment (GDPR, NIS, PCI DSS)
* Experience managing Supply Chain Information Security risk and security testing
* Excellent communication skills to influence decision making with internal and external stakeholders
We welcome people from all walks of life and celebrate individuality as we know diverse minds, experiences and backgrounds help us to learn and better serve our communities. We want people who show up and get involved.
What’s in it for you
* 28 days holiday + bank holidays (and ability to buy/sell up to 5 days per year)
* Annual bonus scheme (up to £2,250 based on company performance and subject to eligibility)
* Leading pension scheme – we will double your contribution (up to 15% when you contribute 7.5%)
* Sharesave – chance to buy Severn Trent Plc shares at a discounted rate
* Dedicated training and development with our Academy
* Electric vehicle scheme and retail offers
* Family friendly policies
* Two paid volunteering days per year
What’s next
We can’t wait to hear from you. Before you apply, you’ll need an updated copy of your CV and about five minutes to spare.
#J-18808-Ljbffr