Overview
Information Security Analyst – GRC Jobs in Northampton, England, UK at Howdens Joinery
Title: Information Security Analyst – GRC
Company: Howdens Joinery
Location: Northampton, England, UK
Type: Full Time, Part Time
Category: IT/Tech, Security
We have an excellent opportunity in our Cyber team. We are looking for an Information Security Analyst to join us and focus on Governance, Risk and Compliance.
Increase your chances of an interview by reading the following overview of this role before making an application.
This role offers a Security professional the opportunity to represent information security, interpret technical design and how information security best practises should be applied.
This is a permanent position based at our office in Brackmills Business Park, Northamptonshire. Working onsite at least 3 days per week.
What will I be doing as Information Security Analyst?
• Assist in establishing and monitoring the corporate information security policy, standards, procedures, guidelines, internal controls and business continuity to ensure Howdens Business Information is protected, in alignment to Cyber Security best practice and data protection regulation.
• Provide technical project support representing information security
• Play an active role in incident management activities.
• Support the PMO (
Project Management
Office) to ensure appropriate security is assessed within projects alongside overseeing supplier compliance to Howdens needs for Cyber Security
• Lead with incident management investigations and conduct risk and vulnerability assessments where appropriate.
• Conduct risk and vulnerability assessments to identify and mitigate security risks
• Engage with IT projects to perform Security Reviews and ensure findings are appropriately communicated and added to the appropriate logs to be managed
• Engage with external organisations working with Howdens to ensure the Confidentiality, Integrity and Availability of Howdens information is maintained
What we need from you
• Technical Operations Security experience with a focus on governance
• Ability to assess system controls based on a documented standard
• Will be able to demonstrate ability in problem analysis and resolution
•
Strongcommunicationskills
to be able to influence best practice at all levels of the organisation, with the ability to explain technical problems to non-technical business stakeholders at all levels
• Ability to build effective relationships to influence and negotiate business outcomes
• Experience of working with and presenting findings to Senior Stakeholders
• Hold recognised Cyber Security qualification (CISA, CISMP, CISM or equivalent).
• Knowledge of industry related frameworks such as ISO
27001, PCI DSS
• Candidates with experience in presentation and training techniques in matters of IT security is advantageous as is anyone with familiarity in business continuity and crisis management activities
• Ability to work onsite in Northampton a minimum of 3 days per week.
What we can offer you:
•
Competitive salary
and annual company bonus
• Excellent pension scheme (company contribution of up to 12%)
• 25 days holiday + bank holidays with the option to buy additional days
• Staff Discount
• Employee Assistance Programme
• Exceptional Reward and
Recognition
events
About Ho…
