Description
Senior Information Security AnalystSupport the Security Improvement Programme by carrying out the following:
liaise with Legal, Procurement, IT and others to identify and stratify all third parties
manage a programme to identify and assess all third parties for security compliance, taking a risk based approach
Liise with the relevant third parties to evaluate their information security controls
Provide oversight to ensure tracking of supplier remediation plans
Establish an ongoing process
Significant experience of Information or IT Security, with at least one year to include carrying out security assessments of third parties
A self starter, demonstrated initiative and commitment for results and the ability to set priorities and manage multiple tasks
Good communication skills, with the confidence to liaise with suppliers in order to gain the required level of assurance
Strong knowledge of information security policies, controls, risks, and industry standards
Proven ability to assess risks and controls and to write reports
Educated to degree level or equivalent
Good written skills