Send me more jobs like this

Information Security Analyst - GRC

Keywords / Skills : GRC , information security standards , ISO/IEC 27001 , GDPR , PCI DSS , NIST , CISSP , CISM , PCI DSS , ISO 27001

8 - 12 years
Posted: 2019-04-05

Industry
IT/ Computers - Software
Function
IT
Role
Security Analyst
Posted On
5th Apr 2019
Job Ref code
10380
Job Description
Job Descriptions:

Information Security Analyst - GRC with 8 plus years experience Ideal candidate should be
  • Develop and maintain the information security policy and accompanying standards, procedures and guidance.
  • Developing and managing plans to improve and implement data protection and privacy controls around IT systems and processes.o develop and deliver a program of planned compliance reviews and ensure any gaps are addressed.
  • To develop and deliver a program of planned compliance reviews/audits and ensure any gaps are addressed.
  • To promote security awareness by developing and implementing a security awareness and training program.
  • Respond to queries from staff and provide security advice as required.
  • Work with external and internal auditors as required.
  • To oversee the Information Security KPI, Risk Register and carry out actions to mitigate risks identified.
  • To carry out vulnerability assessments of systems and processes, identifying potential vulnerabilities, to make recommendations to control any risks identified and to ensure they are implemented.
  • Participating in technology and business projects
  • Cross functional coordination with the information security team and IT operations team as required for enforcement of security controls.
  • Should be able to develop effective relationships with senior stake holders, external vendors/auditors
  • Able to anticipate and understand customer expectations, and ensure that customer requirements are met and expectations appropriately managed. Able to build solid relationships with team members and internal customers.
  • Effective at planning and managing own workload and ability to split time between reactive tasks and planned work.
  • Understands and promotes client strategies, policies and procedures . Aware of how the organisation operates.
  • Provide high quality Information Security guidance documentation.

  • Key Skills and Qualifications required: Strong knowledge of information security standards including ISO/IEC 27001, GDPR, PCI DSS, NIST Preferred certifications - CISSP, CISM, PCI DSS, ISO 27001

    Similar Jobs
    View All Similar Jobs
    Walkin for you