Information Security Analyst
Edgewell Supply Chain
- Chadderton, Greater Manchester
- £40,000-45,000 per year
- Permanent
- Full-time
- To create, administer & maintain policies, standards and templates, following ISO27001, CIS and NIST best practises; creation and upkeep of Incident Response Plans, Disaster Recovery, Business Continuity, along with the planning and execution of tabletop exercises to test the robustness of these policies.
- Plan for disaster recovery and create contingency plans in the event of any security breaches.
- Act as DPO Ambassador for the group DPO; liaising with stakeholders across the business, aiding in the creation ROPAs and engaging with the Bpost privacy network group.
- Coordinated analysis of identified vulnerabilities and patch releases to ensure a risk-based approach is taken for remediation.
- Investigate security alerts and provide incident response.
- Monitor and maintain identity and access management.
- Liaise with stakeholders, up to C-level in relation to cyber security issues and provide future recommendations.
- 1-2yrs experience of implementing ISMS and cybersecurity best practises and certifications such as ISO27001, Cyber Essentials, NIST, CIS or PCI.
- Awareness of GDPR (General Data Protection Regulation) framework and best practises.
- A broad understanding of the current cybersecurity threat landscape, existing and emerging technologies.
- An understanding of the principles of physical, virtual and cloud architectures (IaaS, SaaS, PaaS) for systems and networks.
- Good knowledge of ITIL service management processes.
- Qualys Vulnerability Scanning.
- Recognised Information Security qualification (Security+, CISSP or similar).
- A broad range of technology experience (Private and Public cloud Infrastructure, Networking (Cisco, Fortinet), Microsoft, Linux etc).