Description
Our client is undertaking a major IT Security programme and are currently looking for a number of Security Analysts/Security BA's.
Working in a highly collaborative environment and reporting to one of the Security Programme Project Managers, the Security Analyst will support the activities of related to Information Security Management System (ISMS) implementation specifically developing Policies, Standards, Processes and Procedures.
The candidate must be familiar with Information Security, Risk Management, and data protection principles, and must have hands on experience in helping an organisation move towards and achieving at least one of the following:
* PCI DSS Compliance
* ISMS implementation
* Experience and knowledge of other relevant information security governance and controls frameworks (such as ISO , COBIT, NIST standards, BITS Shared Assessments, etc.) will be very beneficial, as would understanding of ITIL service management framework
The responsibilities of the role include:
* Provide hands-on support to the Project Manager of the Policies, Standards, Processes and Procedures Project as part of the wider Security Programme.
* Support review, development and embedding of the required policies, standards, processes and procedures.
* Use technical knowledge to provide assistance to Security Programme in implementing technical controls to achieve and meet required accreditations.
* Support development and embedding of improvements to the Security Programme
* Support development and embedding of monitoring and metrics to monitor effectiveness of security controls.
* Support development and embedding of an information asset register
* Build and maintain working relationships with team members, vendors, and other departments involved in security programme activities.
The successful candidate must exhibit a proven track record in this position in another organization, must be tenacious to achieve the required results, be a great team player and have excellent communication skills.
Qualifications and Certifications:
At least certified in one of the following:
* CISA, CISM, CISSP, CRISC.
* Any additional IT security professional accreditation would be useful.
Climb Associates is an Equal Opportunities employment agency and employment business and as such, treats all applications equally and recruits purely on the basis of skills and experience