Cyber Risk and Controls Analyst Urgent Need Job

**Description**

**Cyber Risk and Controls Analyst
Hybrid working between our Coventry office and home working
Permanent
Up to £57,000 depending on experience and skills**

**A Little About Us**

At Cadent we’re excited to be part of the future of UK energy One thing we know for sure - this last year has shown us that when we combine our brand with the talent of Cadent employees, we create something special. ?We’ve got a clear roadmap that willboth drive our performance to the forefront of our industry and support the UK government in achieving their net zero target by 2050.

Cadent is the UK’s largest gas distribution network. We manage a network of more than 80,000 miles (130,000 km) of pipes, most of them underground, which transport gas to 11 million customers. We’re making a difference through innovation and new ways ofworking. Together we’re shaping a cleaner, greener future for our 11 million customers who we put at the heart of everything we do.

**The Important Bit**
As the Cyber Risk and Controls Analyst you will implement robust compliance frameworks, ensuring that the organisation is compliant with any internal policies and standards, applicable legal, regulatory and industry requirements by carrying out appropriateinternal and external reviews and third-party assessments to demonstrate compliance.

**Key accountabilities will include**:

- Assessing security and business risks, analysing and presenting critical risks and potential remediation activities to all levels of management within the business
- Lead Cyber Security assurance work for Cadent Suppliers, conducting risk assessments and audits where appropriate
- Preparing and maintaining audit and test strategies that address the evolving business risk and information control requirements
- Operating as a focus for verification and audit expertise for the organisation, working effectively with strategic organisational functions such as legal experts and technical support to provide authoritative advice and guidance on the requirements for controls
- Monitoring compliance with information security policies and procedures and report findings to the Information Security Manager; as well as track and report on the status of control remediation efforts
- Engaging primarily with controls owners and operators to test ISO27001 internal controls to improve testing and audits as well as recommending IT governance controls improvements
- Playing a key role in design, testing, implementation and operational effectiveness of internal controls, including 3rd party suppliers
- Providing expertise for the definition of strategies, policies, processes and guidelines for how we operate and manage cyber security controls across Cadent’s networks, systems and data

**What You'll Bring**
You’ll possess the following qualifications, skills and experience:

- Educated to degree level or equivalent
- Demonstrable experience in a Cyber Risk or Information Security role, ideally within a regulated environment, such as the utilities or finance
- Certified in or studying towards basic security standards, for example SSCP, COMPTIA Security+
- A good understanding of security across - policy, culture, forensics, incident response and risk management
- Ability to understand both technical and non-technical security controls, and how they are applied in a business context
- Have had good exposure to assessing the adequacy of security controls, and exposure to designing security controls, with a specific focus on threat and vulnerability
- Good exposure to security risk management in an ISO27001 aligned environment.

**What’s in It For You**
- 25 days holiday + statutory days + option to buy too
- Competitive salary
- Electric Vehicle Scheme/Cash alternative
- Pension Scheme - double match up to 12%
- Opportunity to earn bonus
- Private medical insurance

Flex Benefits including; cycle to work scheme, salary sacrifice car sc