Information Security Analyst

• To create, administer & maintain policies, standards and templates, following ISO27001, CIS and NIST best practises; creation and upkeep of Incident Response Plans, Disaster Recovery, Business Continuity, along with the planning and execution of tabletop exercises to test the robustness of these policies.
• Plan for disaster recovery and create contingency plans in the event of any security breaches.

• Act as DPO Ambassador for the group DPO; liaising with stakeholders across the business, aiding in the creation ROPAs and engaging with the Bpost privacy network group.
• Coordinated analysis of identified vulnerabilities and patch releases to ensure a risk-based approach is taken for remediation.

• Investigate security alerts and provide incident response.
• Monitor and maintain identity and access management.
• Liaise with stakeholders, up to C-level in relation to cyber security issues and provide future recommendations.

• 1-2yrs experience of implementing ISMS and cybersecurity best practises and certifications such as ISO27001, Cyber Essentials, NIST, CIS or PCI.
• Awareness of GDPR (General Data Protection Regulation) framework and best practises.
• A broad understanding of the current cybersecurity threat landscape, existing and emerging technologies.
• An understanding of the principles of physical, virtual and cloud architectures (IaaS, SaaS, PaaS) for systems and networks.
• Good knowledge of ITIL service management processes.
• Qualys Vulnerability Scanning.
• Recognised Information Security qualification (Security+, CISSP or similar).
• A broad range of technology experience (Private and Public cloud Infrastructure, Networking (Cisco, Fortinet), Microsoft, Linux etc).

Edgewell Supply Chain