Our client, a leading technology firm specialising in providing comprehensive energy portfolio management services and software, is currently seeking a Senior Information Security Analyst to join their team. This is an exciting opportunity to be part of a dynamic and collaborative team focusing on the continuous improvement of their Information Security Management System (ISMS) towards ISO 27001 compliance.
Key Responsibilities:
Developing and maintaining information security policies, procedures, standards, and frameworks aligned with ISO/IEC 27001
Identifying, assessing, and prioritising information security risks while developing mitigation strategies
Managing information security risks associated with third-party vendors and customers
Conducting regular reviews and risk assessments of information security controls and processes
Preparing security and risk reports for leadership and key stakeholders
Implementing security awareness training programmes to educate employees about cyber threats and best practices
Supporting information security incidents and IT transformation projects where appropriate
Monitoring regulatory changes and ensuring compliance with laws, regulations, and industry standards, especially ISO/IEC 27001
Job Requirements:
Experience in implementing an ISMS in various organisational settings, including audit preparation
Understanding of information security principles, frameworks, specifically ISO 27001, and best practices
Knowledge of regulatory and compliance requirements such as GDPR and NIS
Experience in policy, procedure, and standard development
Preferred Qualifications:
ISO 27001 Lead Implementer (or the equivalent experience)
If you are an experienced Information Security Analyst looking for a challenging role within the technology sector, we would love to hear from you