Lead Information Security Analyst

Lead Information Security Analyst

Job Title: Lead Information Security Analyst
Contract Type: Permanent
Location: England
Salary: £45000 - £55000 per annum + bonus + benefits
Start Date: ASAP
Reference: ABISAHB_1653987290
Contact Name: Alex Bowes
Contact Email:
Job Published: May 31, 2022 09:54

Job Description

Lead Information Security Analyst

Location: Midlands/Remote
Salary: £45-55k + Bonus + Benefits

One of the UK's largest and longest standing health goods company are in the process of massively developing their online customer capabilities to create a real online customer retail experience. This is requiring them to bring in a lead implementer of ISO27001 to help them take on this challenge

The role will be around working towards building an exceptional and functional Information Security capability to ensure that the response to the ever-increasing Cyber Security landscape, is compliant against relevant security standards - in particular ISO27001. While performing this role you will have the opportunity to interact with the entire Cyber Security team in which you will be supporting security operations, cyber audits, vulnerability management and even pen testing.
This is opportunity is fantastic for someone experienced with ISO27001 from both a policies and implementation standpoint. You will ideally have an in-depth knowledge of Information Security and a wider understanding of the more technical elements of Cyber, covering SIEM, End Point Protection, Data Governance, WAF's, Network Firewalls & Ethical Hacking.

Key Responsibilities:
* Updating ISMS (policy, procedures, standards, guidance).
* Managing 3rd party security relationships, flag concerns and log risks.
* Working alongside the SecOps team to ensure compliance against information security standards, particularly ISO27001 and GDPR.

Key Requirements:
* Quality comprehension of ISO27001 from an implementation standpoint in particular, as well as Cyber Essentials/Essentials Plus, GDPR, SOC 2 and additional information security-related regulatory and compliance standards.
* Experience managing risks related to vulnerability testing.
* Breadth of knowledge/understanding of a various technical cyber security disciplines.
* Professional certifications such as: CISSP, CISM, CISA

Lawrence Harvey is acting as an Employment Business in regards to this position. Visit our website and follow us on Twitter for all live vacancies (lawharveyjobs)