Information Security Risk and Compliance Analyst
2 weeks ago
Job Description Information Security Risk Analyst
Location: Hybrid - London
Package: Negotiable + Benefits
The Information Security Risk Analyst III at Brown & Brown is responsible for analysing information security controls both within our organisation and with third-party entities. This analysis aims to identify and assess associated information security risks, and effectively communicate these findings to the business stakeholders. This role requires a thorough understanding of information security principles and practices, as well as the ability to evaluate complex systems and processes. The Information Security Risk Analyst III plays a crucial role in safeguarding our organisation's information assets and maintaining a strong security posture.
The day to day:
research and analysis to handle inbound cybersecurity inquiries from company’s third parties.
research and analysis related to vetting new or potentially new third parties.
recommendations for communicating identified security risks of new or potentially new third parties.
track, monitor, and investigate potential information security incidents reported by company’s third parties.
and analyse third party risk including documentation.
guidance in identifying, evaluating, and developing processes and procedures that are effective; meet information security standards and requirements, and follow information security policies and regulations.
reporting and analysis to monitor and communicate information security risk activities
best practices and recommend how to improve current practices and monitoring.
complex inquiries from business partners and third parties (e.g., RFPs, Information Security questionnaires, Contract reviews, etc.).
small to medium Information Security Risk Management project initiatives.
and maintain dashboards, reports, metrics, and trending data related to information security.
a strong understanding of information security fundamentals
working with ticketing systems (ex. Remedy, Service Now)
to assess information security controls based on cybersecurity principles and tenets. (e.g., CIS CSC, NIST SP 800-53, Cybersecurity Framework, etc.).
to identify cybersecurity and privacy issues that stem from connections with internal and external
About you:
Degree (Cyber security or related field), relative Information Security certification, and extensive related experience.
Information Systems Security Professional (CISSP), or related certification.
and understanding of controls related to COBIT, HITRUST, SOX, PCI, HIPAA, and other regulations.
to review Service and Organization Controls (SOC) reports to confirm expected business and partner controls are implemented.
of risk management processes (e.g., methods for assessing and mitigating risk).
of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy.
of cybersecurity and privacy principles.
of organisation's enterprise information security architecture.
of Security Assessment and Authorization process.
of cybersecurity and privacy principles used to manage risks related to the use, processing, storage, and transmission of information or data.
of vulnerability information dissemination sources (e.g., alerts, advisories, errata, and bulletins).
of cybersecurity and privacy principles and organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).
The rewards:
negotiable basic salary and all the normal benefits you’d expect (Holiday, company pension etc.)
collaborative, open and honest environment that is designed to deliver the best outcomes to our clients and staff
flexible working methodology to enable you to be where you need to be, if you don’t need to be in an office then don’t, if you want to be in an office your welcome to use one.
environment built around supporting and developing our staff with funding available for relevant professional qualifications.
-
London, United Kingdom Informa Group Plc. Full timeInforma is a leading international events, intelligence and scholarly research group. Through hundreds of powerful brands, we work with businesses and professionals in specialist markets, providing the connections, intelligence and opportunities that help customers grow, do business, make breakthroughs and take better informed decisions. Informa Connect...
-
London, United Kingdom Informa Group Plc. Full timeInforma is a leading international events, intelligence and scholarly research group. Through hundreds of powerful brands, we work with businesses and professionals in specialist markets, providing the connections, intelligence and opportunities that help customers grow, do business, make breakthroughs and take better informed decisions. Informa Connect...
-
Information Security Risk and Compliance Analyst
2 weeks ago
London, United Kingdom Brown & Brown Europe Full timeInformation Security Risk Analyst Location: Hybrid - London Package: Negotiable + Benefits The Information Security Risk Analyst III at Brown & Brown is responsible for analysing information security controls both within our organisation and with third-party entities. This analysis aims to identify and assess associated information security risks,...
-
Information Security Risk and Compliance Analyst
2 weeks ago
London, United Kingdom Brown & Brown Europe Full timeInformation Security Risk Analyst Location: Hybrid - London Package: Negotiable + Benefits The Information Security Risk Analyst III at Brown & Brown is responsible for analysing information security controls both within our organisation and with third-party entities. This analysis aims to identify and assess associated information security risks,...
-
Information Security Risk and Compliance Analyst
5 hours ago
City of London, Greater London, United Kingdom Brown & Brown Europe Full timeInformation Security Risk Analyst Apply fast, check the full description by scrolling below to find out the full requirements for this role. Location: Hybrid - London Package: Negotiable + Benefits The Information Security Risk Analyst III at Brown & Brown is responsible for analysing information security controls both within our organisation and with...
-
Information Security Analyst
5 days ago
London, United Kingdom ASOS Full timeWe're ASOS. We blend our flair for fashion with our love of cutting-edge technology, but more importantly were interested in how we can bring the best out of you. At ASOS, you're free to be your true self without judgment, and channel your creativity into a platform used by millions. Through our Fashion with Integrity strategy we are driving diversity,...
-
Information Security Risk Analyst
4 weeks ago
London, United Kingdom Arc IT Recruitment Full time**Information Security Risk Analyst** **London / Hybrid** **To £50k plus bonus plus bens** Information Security Risk Analyst is required by financial services organisation. This role will join the 2nd Line Information Security Risk team within the Group Risk Function. The key function of this role will be to investigate potential data incidentsor...
-
Senior Information Security Analyst
2 days ago
London, United Kingdom Jas Gujral Full time €70,000 - €85,000Senior Information Security Analyst Our Client is a leading global company specialising in pharma products. They are looking to recruit a Senior Information Security Analyst with at least 5 to 7 years expertise in Technology Security. The Senior Information Security Analyst is responsible for maintaining information security policies, architecture,...
-
Senior Information Security Analyst
2 days ago
London, United Kingdom Jas Gujral Full time €70,000 - €85,000Senior Information Security Analyst Our Client is a leading global company specialising in pharma products. They are looking to recruit a Senior Information Security Analyst with at least 5 to 7 years expertise in Technology Security. The Senior Information Security Analyst is responsible for maintaining information security policies, architecture,...
-
Senior Information Security Analyst
2 months ago
London, United Kingdom Nexus Jobs Limited Full timeSenior Information Security Analyst Our Client is a leading global company specialising in pharma products. They are looking to recruit a Senior Information Security Analyst with at least 5 to 7 years expertise in Technology Security. The Senior Information Security Analyst is responsible for maintaining information security policies, architecture,...
-
Senior Information Security Analyst
2 days ago
London, United Kingdom Nexus Jobs Limited Full time €70,000 - €85,000Senior Information Security Analyst Our Client is a leading global company specialising in pharma products. They are looking to recruit a Senior Information Security Analyst with at least 5 to 7 years expertise in Technology Security. The Senior Information Security Analyst is responsible for maintaining information security policies, architecture,...
-
Information Security Analyst
1 month ago
London, United Kingdom ITS Recruitment | ITS Works Full timeInformation Security Analyst - Governance and Compliance Information Security Analyst - Governance and Compliance - required by 700 user City Law Firm. Reporting to the Head of InfoSec you will be responsible for supporting the governance, risk and compliance activities of the department, and ensuring security culture and processes are embedded across the...
-
Information Security Analyst
1 month ago
London, United Kingdom ITS Recruitment | ITS Works Full timeInformation Security Analyst - Governance and Compliance Information Security Analyst - Governance and Compliance - required by 700 user City Law Firm. Reporting to the Head of InfoSec you will be responsible for supporting the governance, risk and compliance activities of the department, and ensuring security culture and processes are embedded across the...
-
Information Security Analyst
2 weeks ago
London, United Kingdom ITS Recruitment | ITS Works Full timeJob Description Information Security Analyst - Governance and Compliance Information Security Analyst - Governance and Compliance - required by 700 user City Law Firm. Reporting to the Head of InfoSec you will be responsible for supporting the governance, risk and compliance activities of the department, and ensuring security culture and processes are...
-
Information Security Analyst
2 days ago
London, United Kingdom ITS Recruitment | ITS Works Full timeJob Description Information Security Analyst - Governance and Compliance Information Security Analyst - Governance and Compliance - required by 700 user City Law Firm. Reporting to the Head of InfoSec you will be responsible for supporting the governance, risk and compliance activities of the department, and ensuring security culture and processes are...
-
Information Security Grc Analyst
1 month ago
City of London, United Kingdom i3 Resourcing Limited Full time**Information Security GRC Analyst** **£47,000 - £55,000** **2-3 days in a London office / 1-2 days from home** **EXCELLENT full benefits package and bonus** **Information Security GRC Analyst, Governance, Risk, Compliance, Security Risk, Privacy Risk, Management Information, ISO27001, NIST, SOX, Firewalls, IDS/IPS, DLP, Information Security Analyst,...
-
Information Security Analyst
1 month ago
London, United Kingdom ITS Recruitment | ITS Works Full timeInformation Security Analyst - Governance and ComplianceInformation Security Analyst - Governance and Compliance - required by 700 user City Law Firm.Reporting to the Head of InfoSec you will be responsible for supporting the governance, risk and compliance activities of the department, and ensuring security culture and processes are embedded across the...
-
Information Security Analyst
4 weeks ago
London, United Kingdom ITS Recruitment | ITS Works Full timeJob DescriptionInformation Security Analyst - Governance and ComplianceInformation Security Analyst - Governance and Compliance - required by 700 user City Law Firm.Reporting to the Head of InfoSec you will be responsible for supporting the governance, risk and compliance activities of the department, and ensuring security culture and processes are embedded...
-
Information Security Analyst
2 weeks ago
London, United Kingdom ITS Recruitment | ITS Works Full timeJob Description Information Security Analyst - Governance and Compliance Information Security Analyst - Governance and Compliance - required by 700 user City Law Firm. Reporting to the Head of InfoSec you will be responsible for supporting the governance, risk and compliance activities of the department, and ensuring security culture and processes are...
-
Information Security Analyst
1 month ago
London, United Kingdom Pontoon Full time**Information Security Analyst Financial Services Hybrid in London: 2 days per week onsite average 6 months £400 per day** The Information Security Analyst role supports the Information Security Manager to enable business processes and innovative technology to deliver key business objectives in a secure manner which protects our reputation, organisational...
