IT Security and Compliance Analyst
Role details
Job location
Tech stack
Job description
- Works with fellow team members and other departments to address customer assurance requests, preparing responses to customer inquiries.
- Work with senior managers across the business to drive the information security agenda and ensure that it meets complex compliance requirements.
- Works closely with Senior Analysts supporting compliance, regulatory, vendor and cyber-maturity assessments and reporting.
- Provides direct support for control activities such as access reviews, data mapping and vendor assessment.
- Works toward, establishes, and maintains a firm knowledge of data security practices and relevant regulatory requirements.
- Assist with the development of control frameworks to meet business and regulatory requirements
- Participates in project reviews, working with business representatives, technical staff, suppliers, and project team members to evaluate information security requirements, and to help mitigate potential exposures.
- Provides support for contract review and negotiation of information security and privacy requirements.
- Monitors and promotes compliance with information security policies and standards. Recommends changes to policies, standards and procedures.
- Consult with IT colleagues to ensure that security is factored into the evaluation, selection, installation and configuration of hardware, applications and software
- Supports UK DPO in providing technical expertise in relation to UK GDPR, Data Protection Act 2018 and PECR 2003
Requirements
- Ideally at least one industry certification (e.g. CISA, CISM, CRISC, CISSP, ISAAP)
- 5 years of combined Information Security and Technical Administration Experience.
- Proven experience in an information security role including experience of developing Information Security policies and plans.
- Working knowledge of General Data Protection Regulation (GDPR).
- Experience with information security internal & external audits and contract compliance.
- Good understanding of system technology security testing (vulnerability scanning and penetration testing).
- Excellent understanding of information security concepts, protocols, industry best practices and strategies.
- Knowledge of information security & control frameworks e.g., NIST, ISO 27001/27002 a plus.
- Familiarity with regulatory and compliance mandates e.g., PCI, CCPA, GDPR a plus
- Proficient with Microsoft Office suite of products
- Sound analytical judgement, self-motivated, attention to detail, ability to manage deliverables against firm timelines, and commitment to producing results.
- Strong verbal and written communication skills.
The ideal candidate will have a flexible, proactive approach to work and be committed to delivering an exceptional customer experience and be comfortable dealing with conflicting priorities.
Benefits & conditions
- Health Insurance
- Dental Insurance
- Life and Disability Insurance
- Flexible Spending and Health Savings Accounts
- Employee Assistance Program
- Retirement Plan
- Paid Time Off
- Tuition Reimbursement
We have an exciting opportunity for an IT Security & Compliance Analyst to join our IT Team here at Holman UK. This role will be based out of either our HQ in Chippenham, or our Birmingham Office, with the opportunity for hybrid working (3 days per week in the office). This is a permanent opportunity, and we are looking to pay between £55,000 to £60,000 per annum, depending on experience., Work-Life Balance & Wellness
- 26 days off a year + Bank Holidays to relax and recharge.
- Health Cash Plan to help cover every day medical expenses.
- Free onsite bi-weekly yoga
- Free onsite massage with a qualified therapist
Financial Security
- Group Personal Pension Plan to help you plan for the future.
- Bonus Scheme because we believe in sharing success.
Growth & Recognition
- Career Development Support with training and opportunities for advancement
- Fun seasonal events and social opportunities
- Recognition and rewards through our Partners in Excellence programme
If this sounds like the role for you then we look forward to welcoming your application!
If you are a current Holman employee and wish to apply for this role, please notify your current line manager of your application.
The need-to-know parts:
- You must have the right to remain and work in the UK.
- You must tell us about any previous convictions or cautions including any deemed as 'unspent'. These will not necessarily exclude you from employment, but they must be declared at the point of application.
- Please also be aware we do not provide visa sponsorship for any of our positions advertised.
We want to positively encourage differences within Holman UK and believe it is critical to our success as a company. Holman UK is proud to be an equal opportunity workplace that seeks to recruit, develop and retain the most talented people from a variety of backgrounds, perspectives, and skills.