Security Assurance Analyst - new job in Manchester, UK

Security Assurance Analyst
  • £50,000 per Annum
  • Permanent
  • Manchester, Greater Manchester, England, UK Manchester Greater Manchester GBR EC3M 7DQ
Job Ref: BBBH23816
Sector: Cybersecurity
Date Added: 20 June 2022
  • Based within the Information Security function, our Internal Assurance team are responsible for an extensive global security and technology internal controls assurance programme - acting as a 2nd line audit capability.The successful candidate will have gained experience within security and technology assurance (or audit) roles. This position will offer exposure to control owners across technology, security and global business functions supporting the continued maintenance of ISO 27001 certifications both at a global and local market level.

    • Delivery of internal assessments for both technical and non-technical security controls.
    • Support ISO 27001 audit programmes for existing global and local-market certifications (including preparation for external surveillance and re-certification audits).
    • Engage with Regional Security and Service Line Security teams to deliver internal assurance support for local markets, brands and business units.
    • Support the initial implementation and future development of a dedicated Governance, Risk and Compliance platform (for assurance/compliance-based activities) through 2021-22.
    • Delivery of internal assessments for resilience (business continuity and physical security) controls - supporting future ISO 23301 compliance initiatives.
    • Working with the Governance & Risk team, ensure that actions associated with findings and non-conformities are agreed, tracked and closed in line with committed targets.
    • Maintain the security internal assurance plan ensuring audits are scheduled and completed by the agreed dates.
    • Build relationships and partner with business and technology control owners at both a global and regional level.
    • Support the coordination of 3rd line security and resilience internal audits.
    • Drive a culture of understanding and awareness around security assurance throughout the global functions and to the regional and service lines representatives.
    • Contribute to the review and revision of the Group Security Policies, Standards and Frameworks.
    • Support the development and maintenance of security assurance metrics via reporting dashboards for our global and regional teams.

Candidate Profile

    • Experienced within technology assurance functions and auditing techniques
    • Proven practical experience of security and technology control frameworks such as ISO 27001, NIST, CIS and Cyber Essentials
    • Working knowledge of ISO 27001 including Mandatory Clauses and Annex A controls
    • Achieved or working towards an information security qualification, e.g. CISSP, CISM, CISA, CRISC
    • Ability to explain technical complex concepts to non-technical audiences combined with excellent communication and organisational skills
    • Committed to their own personal development within security assurance
    • Diligent and thorough approach to problem solving
    • Demonstrably self-motivated, pro-active, action orientated to achieve deadlines

Lorien Plc is acting as an Employment Agency in relation to this vacancy.

20/07/2022 16:29:06
GBP 50000.00 50000.00 Annum
Contact Consultant:
Chris Cordina

Submitting application, please wait..