Information Security Analyst

A highly successful retail business is searching for an Information Security Analyst in the Bournemouth area.Your Role While in this position your duties may include but are not limited to:

• Maintaining an Information Security Management Systems, effectively identify and manage IT risk and conduct risk assessments and inform mitigation strategies
• Supporting the Systems Engineering team to execute penetration testing, remediation processes and security checks and develop security tools, processes and technologies, keeping future certifications for security standards in mind such as Cyber Essentials or ISO27001
• Creating a security incident response plan, to promote rapid response and investigations of incidents to identify severity and sources, including the monitoring of alerts and springing into action to remediate threats, ensuring that detailed documentation is maintained 
• Undertaking PCI compliance auditing
• Collaborating with security partners to ensure a robust security posture and undertake due diligence during the onboarding process for non-system suppliers
• Managing the ongoing monitoring of security systems, logs and network traffic to proactively identify potential threats and apply appropriate security controls
• Overseeing Data Processing Agreement usage with third party system suppliers and data processors
• Undertaking Data Protection Impact Agreements as needed to maintain the privacy policy with regular updates
• Taking ownership of third-party cyber awareness training and also the distribution of phishing tests, ensuring that security training sessions are delivered to staff
• Keeping knowledge of the latest trends, technologies and threats relating to cyber security
• Ensuring GDPR and Data Protection compliance across the business, supporting with Data Subject Access Requests and managing data breaches

You MUST Have: Please apply ONLY if you meet the following criteria:

• Extensive experience within a cyber or information security related role or similar
• Ideally, possession of a degree within either Computer Science, Information Security or another IT discipline, in addition to a cyber security certification such as CISM, CASP or CISSP
• Strong technical knowledge of Information Security standards and frameworks, security controls, attacker techniques and remediation processes
• It would be beneficial to have knowledge of GDPR and other data protection legislation
• Proven expertise in security software and prevention systems
• Experience in managing incident response plans and using analysis tools to investigate threats
• Excellent communication abilities, particularly in translating technical terms and jargon into easily understandable formats
• Good analytical and sound problem-solving skills

Your Opportunity: This is a highly successful retailer, with several years of substantial growth behind them and a vast customer base, who are now striving for further expansion, and understandably, are focussing on cyber and information security as a top priority. As such, the company is seeking a cyber security expert to transform and strengthen the company's existing infrastructure and determine proactive methods to mitigate and prevent future threats from occurring.The business is offering a competitive starting salary, depending on relevant experience and the level of technical knowledge possessed. Alongside this, there will be additional benefits including an attractive annual leave provision and strong pension contribution, alongside plenty of other incentives and benefits. There will be excellent room for development within this opportunity, with exciting opportunities for skills and experience progression, as the role will evolve naturally with the scope of the work needed.If this opportunity interests you then please do not hesitate to reach out to:Shauna Murphy - Senior Talent Acquisition Specialist M: E: