InformationSecurity Risk Analyst Location: Hybrid - London Package: Negotiable + Benefits The InformationSecurity Risk Analyst III at Brown & Brown is responsible for analysing informationsecurity controls both within our organisation and with third-party entities. This analysis aims to identify and … assess associated informationsecurity risks, and effectively communicate these findings to the business stakeholders. This role requires a thorough understanding of informationsecurity principles and practices, as well as the ability to evaluate complex systems and processes. The InformationSecurity Risk Analyst III … plays a crucial role in safeguarding our organisation's information assets and maintaining a strong security posture. The day to day: research and analysis to handle inbound cybersecurity inquiries from company’s third parties. research and analysis related to vetting new or potentially new third parties. recommendations for more »
Job Description Senior InformationSecurityAnalyst Our Client is a leading global company specialising in pharma products. They are looking to recruit a Senior InformationSecurityAnalyst with at least 5 to 7 years expertise in Technology Security. The Senior InformationSecurityAnalyst is responsible for maintaining informationsecurity policies, architecture, technical standards, technical controls, security solutions, guidelines, procedures, and other elements necessary to maintain security posture. Responsible for assessing information risk and facilitating remediation of identified vulnerabilities & risks across the organization. Accountable for coordinating … the execution of security measures to protect our computer infrastructure, information systems and to ensure the organization maintains an acceptable risk posture. The Senior InformationSecurityAnalyst is highly engaged in risk management and mitigation, including evaluating vendor risk, examining vendor contracts for terms of more »
InformationSecurityAnalyst - Governance and Compliance InformationSecurityAnalyst - Governance and Compliance - required by 700 user City Law Firm. Reporting to the Head of InfoSec you will be responsible for supporting the governance, risk and compliance activities of the department, and ensuring security … embedded across the firm. The role will include helping the firm maintain ISO270001 accreditation and compliance with other standards. Other key responsibilities of the InformationSecurityAnalyst will include; Maintaining ISMS related policies and procedures Development and enhancement of InfoSec Policies, Procedures and relevant standards, and supporting … reviewing and assessing vendors against established tools/benchmarks Working to help the firm maintain ISO27001 and PCI certifications Provide an escalation path for informationsecurity issues, incidents and enquiries Coordinate the production of relevant reports and statistical analysis required for ISMS Management Review Supporting the training, induction more »
InformationSecurityAnalyst £60,000 - £70,000 per annum Full time - City - Hybrid Sponsorship is not available for this opportunity Is this the InformationSecurityAnalyst role for you? Crone Corkill are partnered with a very well respected organisation in the Legal sector as … they look to add a new member to the InformationSecurity team. Partnering with the InformationSecurity Manager, you'll ensure the business aligns to ISO27001, conduct audits related to ISO27001 & NIST, generate InfoSec dashboards & metrics, as well as handle the onboarding of new suppliers. Due … team, you'll often be required to work independently and assist with a variety of InfoSec related tasks. What will you do as an InformationSecurityAnalyst? Onboard suppliers and perform risk assessments, third party questionnaires, due diligence, gap analysis and make suggestions accordingly Ensure Securitymore »
InformationSecurityAnalyst required by an established technology company located in Farnborough. Having recently become ISO270001 accredited they are looking for an InformationSecurityAnalyst to take responsibility for the policies, standards and procedures that fall within the scope of the ISO27001 accreditation. The … InformationSecurityAnalyst will be responsible for Developing, maintaining and improving informationsecurity policies, procedures and standards Leading future ISO27001 audits both internal and external to ensure compliance Managing an annual penetration test via an external supplier Internal informationsecurity training including "lunch … learns" and onboarding new employees Key experience Proven experience in an InfoSec Analyst role Knowledge of ISO27001 standards and maintaining the accreditation within an organisation Risk management Any experience in the following areas would be advantageous but is not essential OWASP DevSecOps Application security Cloud security Any more »
Keynsham, England, United Kingdom Hybrid / WFH Options
IVC Evidensia
InformationSecurity Compliance Analyst Based in our UK Head Office – Keynsham, Chocolate Factory Hybrid Working (2 days in the office) – Dog Friendly Office – Free Parking We are focused on delivering our purpose of healthy animals, happy owners and benefit every clinic, customer, and patient. Join us and … of our mission to deliver the highest quality care to millions of animals. About The Role We are excited to be looking for an InformationSecurity Compliance Analyst – The informationsecurity team is responsible for safeguarding the organisation's digital assets and information. This role … will also involve conducting policy checks, assessing risks on key systems, and collaborating with internal teams, and third parties, to agree, implement and review security controls. You would be contributing to incident response efforts. You’ll be Involved In: Policy Development and implementation: Risk Management Third Part management Incident more »
InformationSecurityAnalyst Location: Runcorn, England (1-2 times a week in the office) Reporting to: Global Head of Cyber Defence and Engineering Swissport was incorporated in 1996. From its beginnings with operations at Switzerland's largest airports in Zurich, Geneva and Basel, Swissport has developed into … driving seat in defining your own career journey, as Swissport can offer you a world of knowledge and personal development! You, as our Infosec Analyst Closely work with Security Operational Centre to detect, investigate and address insecure features and malicious activities within Swissport networks and infrastructure, report on … potential threats. Job Responsibilities ▪ Contribute to the implementation and enforcement of Swissport informationsecurity strategy, policy, standards, controls and processes. ▪ Drive the investigation of compromised accounts and MCAS alerts. ▪ Investigate on L3 requests/tickets. ▪ Manage EDR: fine-tune detection rules, monitor and add exclusions where required, investigate more »
A leading corporate banking and capital markets organisation is seeking an InformationSecurity (Senior Analyst) to join the team in London. Main Purpose of the role Subject matter expert enabling the InformationSecurity function to deliver high quality consultancy, risk reduction and assurance services addressing … the InformationSecurity needs of the business and its’ clients. Key Activities and Competencies Ensuring compliance with our Group policies and controls, regulatory requirements, and customer expectations for InformationSecurity Develop and enhance the Management Information and risk reporting. Foster a culture of security awareness. Provide informationsecurity training and awareness programmes to empower employees in safeguarding company assets. Risk analysis of IT applications, EUCs and business processes; determine appropriate remediation. Ensuring security requirements are appropriately maintained in our outsourcings and third-party arrangements. Provide your security expertise to more »
InformationSecurityAnalyst/Security Engineer (office based) Do you want to work for a global client, a client which cares about its employees? IT Security Engineer to work with an amazing client. You would be working with technologies such as; Mimecast email security … finder, a problem fixer, someone who has a passion for security. Working as part of a team and independently ensuring the correct level of security integrity to protect systems, information, personal data and people from cyber-attacks and unauthorised access. Working across the ensuring security is fit … for purpose. • Day-to-day running and monitoring of InformationSecurity systems. • Analyse and interpret security weaknesses & recommend continuous improvements. • Working on global IT Security projects • Security Incidents, reports and alerts ensuring prompt containment and recovery. As part of the security team, you will more »
Leeds, England, United Kingdom Hybrid / WFH Options
Fruition IT
Role: Senior Security Risk & Compliance Analyst Location: Hybrid based out of London, Leeds or Birmingham - once every 2 weeks on site Package: £67,000 + bonus + 28 days annual leave An international leader in business services is looking for a Security Risk & Compliance Analyst to … lead across initiatives relating to security and risk. The InformationSecurity Risk & Compliance Analyst will lead within the identification, reporting and subsequent actions of security risks while ensuring security controls are operating effectively and in accordance with regulatory and legislative requirements. Senior Security Risk & Compliance Analyst Key Responsibilities Lead and coordinate all aspects of the security risk assessments including the tracking and remediation processes Clearly document and define risks and potential impacts including mitigation proposals and provide recommendations, challenging where required Manage and maintain the InformationSecurity Risk more »
InformationSecurityAnalyst £45,000 per annum Hampshire, Farnborough The InformationSecurityAnalyst will be responsible for policies, standards and procedures that fall within the scope of our ISO27001 accreditation. This role requires a deep understanding of informationsecurity principles, regulations, and … maintaining the certification. Beneficial skills Knowledge of DevOps and Dev Sec Ops. Good technical knowledge of Cloud and on-premise network, infrastructure, and application security plication security Spectrum IT Recruitment (South) Limited is acting as an Employment Agency in relation to this vacancy. more »
InformationSecurityAnalyst | Remote Contract | Outside IR35 Our client looking to hire an InformationSecurityAnalyst with solid Qualys experience to join them on an freelance basis on an initial 3 month contract (extensions likely), to start ASAP. You will be working on a … modernisation programme, as the client is looking to make sure their on-prem systems are security-ready for a move over to AWS. This role will be operating outside IR35, working remotely. Daily rate negotiable. Primary responsibilities will be to: Assess outputs from Qualys (Vulnerability Scanning Tool) Determine level … of risk and therefore priority (as input recommendation) Prepare/package information so actionable by other technology teams (product managers, platform owners, infrastructure engineers and/or application engineers). You must have: Proven experience working as InformationSecurityAnalyst Experience working with Qualys to assess more »
T SecurityAnalyst Type – Permanent Location – London (Hybrid, occasional office) Salary – Up to £55,000 per year Overview: As an IT SecurityAnalyst, you will play a crucial role in safeguarding our clients digital assets and maintaining the integrity, confidentiality, and availability of our information systems. Your expertise in Microsoft technologies and experience with SIEM (SecurityInformation and Event Management) tools will be instrumental in identifying and mitigating security threats proactively. Responsibilities: 1. Security Monitoring and Incident Response: - Utilize SIEM tools such as Microsoft Sentinel to monitor security events … and respond promptly to potential threats. - Investigate security incidents, analyse root causes, and implement necessary remediation actions. - Develop and maintain incident response procedures to ensure timely and effective handling of security breaches. 2. Vulnerability Management: - Conduct regular vulnerability assessments and penetration tests to identify weaknesses in our systems more »
Job title: Information & Cyber SecurityAnalyst Client: Financial Services Salary: £50,000-£70,000 + Bonus Location: London/Hybrid Skills: InformationSecurity, Monitoring, Compliance, Best Practices The role: My client are seeking a knowledgeable Information & Cyber SecurityAnalyst to join their … team. This role is focused on the business side of Security, and is absolutely key in assuring that information is protected and secured at all times. The position is broadly split into 2 main areas: Compliance Security monitoring and compliance Detecting any issues or security breaches … infrastructure Monitoring of devices and infrastructure, including reporting Investigating potential threats and issues Risk management and analysis Utilising tooling such as packet inspection and security forensics to resolve and report issues Security & Best Practice Working with various other Security personnel Mitigating Information and Cyber based risks more »
Senior IT SecurityAnalyst Up to £55,000 Hybrid – 2 days per week at either the London, Weymouth, or Newcastle offices We are representing a leading B2C retailer who are in the process of modernising their technology estate, with significant investment in IT. As the Senior IT SecurityAnalyst, you will report to the Head of InformationSecurity, whilst leading a team of two IT Security Analysts. You will be the SME for technical security, have the responsibility for the managed SOC and associated vendor relationships, as well as the vulnerability, penetration … and application security testing. We are looking for: An individual with the relevant InformationSecurity based qualification (e.g. CISSP) Proven experience with incident management and the ability to lead on this Technical understanding on a Microsoft stack – especially Darktrace Prior experience managing a 3rd party It would more »
Peaple Talent have partnered with a large retail organisation based in Northampton who are recruiting an InformationSecurity Cloud Analyst. You will be responsible for maintaining and improving all security operational procedures, processes and technical controls, monitoring, detecting and responding to security threats, threat hunting, threat … intelligence and the management of security testing in order to reduce operation informationsecurity risks. Role responsibilities : Configuration and scheduling of vulnerability scans within the vulnerability management programme. Monitoring, prioritisation and remediation of identified vulnerabilities according to organisational SLAs. Organisation of penetration tests with 3rd party providers … and remediation of vulnerabilities on a risk prioritised basis. Investigation and resolution of InformationSecurity Incidents, requests and investigations. Ensuring information is available for scheduled audits. Ensuring effective communication and prioritisation of incidents between the Security Operations Center and support teams. Supporting the ISI process for more »
Our client is seeking a dedicated InformationSecurity Manager to manage IT risk & compliance, accreditation, data protection, business continuity projects and activities. Client Details Our client is a Manchester based small but fast growing technology business. Description Continue review and improve the security policies Implement and maintain … ISMS Ensure compliance with relevant security standards and regulations (ISO 27001, Cyber Essentials, etc.) Review and implement business continuity plan and policy Manage technical and business stakeholders Perform proactive risk assessments Work with external auditor for the regular auditing activities Profile Strong knowledge of informationsecurity protocols … and procedures Knowledge and experience in different security standards and frameworks with track record in leading ISO 27001 accreditation/re-accreditation projects Proficiency in information risk assessment and compliance Experience in Business Continuity is desirable but not essential Job Offer Hybrid working arrangement Opportunity to lead the more »
the successful candidate would visit the Head Office once per quarter (approx.) This is a superb opportunity for the candidate to really take their informationsecurity career to the next level. Key Responsibilities Supporting internal and external audits and ensuring adherence to ISO27001 Helping implement user awareness security training Helping maintain the ISMS Working with technical and non-technical stakeholders Performing security risk assessments Creating and maintaining security policies and standards Must haves: Minimum of two years in similar IT compliance or security role with varied GRC experience (policy, documentation, audits). CISSP certification … is desirable Understanding and experience of successfully maintaining informationsecurity standards in a multi-country environment – ISO27001, NIST etc Knowledge of current informationsecurity legislative/regulatory requirements such as GDPR Strong communicator with excellent written communication skills Have a positive attitude with an eagerness to more »
Coventry, England, United Kingdom Hybrid / WFH Options
Lorien
Senior Analyst – Information & Cyber Security - IAM Coventry: Hybrid working pattern The Client: A leading building society is looking for an InformationSecurity & IAM Consultant! Salary – Up to £62,000 + Up to 20% Discretionary Bonus + Additional Corporate Benefits Package Role: A dynamic A Senior … IAM Analyst- IAM drives through security good practices as we expand our use of cloud technologies and take on digital transformation initiatives. The role will influence security practices, moulding the future of the building society for years to come. The consultant will act as a guardian of … our technological transformation, ensuring robust security measures in line with regulatory frameworks such as GDPR, FCA, and PRA. Essential skills: Familiarity with PCI-DSS, UK Financial Services regulatory requirements and ISO27001/2 or NIST Cyber security experience with IAM/PAM tools such as SailPoint, Okta, CyberArk more »
IT SecurityAnalyst Bromborough, Leeds or Caythorpe (Hybrid) £40,000 Gleeson Recruitment are working on a great opportunity alongside an incredible, longstanding organisation who are seeking a highly motivated and skilled Security Operations Center (SOC) Engineer. You will play a critical role in managing security events … with NIST guidelines and governance requirements. Essential Requirements: • 5 years of experience in a technical SOC or cybersecurity role, • 5 years experience of Cyber Security investigations and incident response environments • Good knowledge of Anti Malware, Anti Phishing, EndPoint Detection and Response systems. • Good all round knowledge of different threat … scenarios, investigations, incident response processes and remdiation techniques. • Good knowledge of cyber security systems and tooling • Reasonable knowledge of SecurityInformation and Event Management systems • Reasonable knowledge of Firewall systems (Fortigate essential) • Foundational knowledge of Security Orchestration, Automation and Response (SOAR) systems • Good knowledge of common more »
IT Security and Compliance Analyst York - Hybrid (2-3 days on-site) Main Purpose: Provide Security & Compliance support to the NiM businesses and IT incl. relevant contribution to agreed IT support model, operational sustain incl. incident and request management, Market Security Compliance Indicator (MSCI) measure and … InformationSecurity Managment (ISMS) contribution. Key Outputs: Sustain the IT product portfolio, across all UKI NiM (Nestle in the Market) businesses, by providing first level support, incorporating the Service Portal and subject matter experts, to agreed targets and SLO, ensuring Compliance by following relevant GLOBE Standards and Policies … incl. Nestlé IT Security Policy and Cyber Securirty Awareness Supporting the Security & Compliance Specialists with ownership or support of relevant MSCI measures and ISMS controls Providing support to the Market Role Coordinator for GLOBE SAP Security sustain and projects Supporting the application compliance process and governance framework more »
has arisen due to new business expansion, and offers superb opportunities to join a small, specialist team, and the successful candidate will focus on security risk, policy and governance. Key accountabilities in the role will include: Authoring, reviewing and updating polices Maintenance and development of the ISMS IS027001/… and procedure execution Managing stakeholders at all levels Third party supplier management Developing and executing compliance activities Key skills needed are: Experience in a security role with the emphasis on risk, policy and governance Proven commercial experience of security risk, audit, and compliance methodologies Experience of informationsecurity management security systems with a focus on risk management and assurance Stakeholder management at both a technical and non-technical level Experience of data loss prevention tolls highly desirable Financial services experience preferred, but not essential. Please send your CV ASAP for this hugely exciting role more »
Job title: SecurityAnalyst Client: Fintech Salary: £40,000 - £75,000 Location : London (Hybrid) Experience level: 1+Years My client is looking for a passionate, and talented Security engineer to join their firm in a top priority position/team. This candidate will be responsible for securing the … firms information and computer systems, implementing best practice solutions and providing an elite level of consulting for security operations. The main responsibilities are set around, monitoring, compliance, security engagement, and detection/response. Role: · Assist in the design, implementation, and maintenance of security measures. . Develop … threat intelligence capabilities . Provide a strong level consultancy when it comes to engineering security solutions. · Provide input for architecture plans with consideration of current standards. · Monitor new and emerging technologies that could be adopted · Take on incident response duties · Liaison with key stakeholders · Ensure smooth handover from engineering more »