Connecting linkedin

Information Security Analyst

  • Location

    London, England

  • Sector:

    Information Security

  • Job type:

    Permanent

  • Salary:

    Up to £62500 per annum + Bonus and benefits

  • Contact:

    Harry Moran

  • Contact email:

    harrym@montash.com

  • Salary high:

    62500

  • Salary low:

    0

  • Job ref:

    ISATPR_1562062951

  • Published:

    5 months ago

  • Expiry date:

    2019-07-09

  • Startdate:

    ASAP

Information Security Analyst- Third Party Risk

Overview: Montash is working with an exciting client in the insurance sector who are looking for an Information Security Analyst who will be responsible for the management of Third-Party Information Security Risk for the organisation.

Responsibilities:

  • Completion and management of inherent risk ranking of all suppliers in compliance with the Global Third-Party Information Risk Management Policy
  • Liaise and work alongside the Global Third-Party Team
  • Perform risk assessments and management of cloud providers in accordance with the process set by the Global Cloud Governance team
  • Management, tracking and identification of risks and control deficiencies relating to Third Parties
  • Review information security policies, guidelines, standards and baselines in place and in development
  • Contribute to security awareness training
  • Assist with internal security reporting
  • Management of Third-Party related information security projects

Requirements:

  • Good information security experience with a focus on risk controls and assessments, risk management, governance, program development, auditing and compliance
  • Experience of managing or supporting a third-party risk assessment programme is essential
  • Strong technical background
  • Experience interpreting and applying information security frameworks and standards (e.g. PCI-DSS, NIST Cybersecurity Framework, ISO/IEC 27001/27002) or attestation reports (SOC ½ or alternatives)
  • Ability to understand and analyse complex business processes and technologies to make recommendations to non-technical colleagues
  • Expert knowledge of the technical and business aspects of information security- includes third party security risk and European data protection regulation

Location: London

Salary: £62,500 + bonus and benefits

Languages: English (Verbal and Written)