Cookies — it's your choice

At Bright Network we use cookies and similar technologies to help deliver you the best possible experience. Some are necessary to help our website work properly and can't be switched off, and some are optional but support Bright Network in building and running the service that we provide to you.

Data we store

You can find out more in our privacy policy at any time by going to the link in our footer.

    1. Home
    2. Graduate Jobs
    3. Technology & IT Infrastructure
    4. Information Security Internship London 2022
    Lock Applications for this job are now closed
    Closing soon

    At Abellio we think of our people are our biggest strength and aim to set the highest standard.

    We expect our colleagues to

    • Deliver the best service to customers and internal stakeholders while demonstrating our values.
    • Have awareness of statutory and regulatory requirements, as well as internal policies and procedures to ensure compliance.
    • Understand your contribution to the wider Abellio strategy and goals.

    Where are you based?

    • Hybrid role – commutable distance to one of the Abellio offices based in London, Glasgow or one of our operating companies based in Birmingham, Derby, Liverpool, or Stratford. 

    What core competencies do you need?

    Communication

    • Can communicate with all levels of colleagues internally within Abellio and external suppliers, ensuring that sensitive information is protected.

    Attention to detail

    • Able to read documents to extract specific details - you will be trained in what you are looking for.

    Teamwork

    • The role will require a huge amount of engagement with internal stakeholders so communication and teamwork will be key. Be seen as reliable and a trusted member of the team.

    Planning & Organising

    • Agree clearly defined objectives in line with the priorities of Abellio UK. A self-starter who can be trusted to deliver. The role will require collation, organising and limited analysis of a vast amount of data, so organisational skills are a must.

    What do you do?

    • You will support a major review of our existing contracts with third parties. Specifically, you will identify the suppliers’ current controls, either contractually or by design, in their obligations around Information Security, GDPR and PCI DSS to ensure they and Abellio are following all regulatory requirements.
    • Reviewing third party contracts and extracting specific data and collating this in a master data set. Working with an external consultancy to determine the suitability of the current controls and identify remediation actions if required. Training will be provided. 

    What are your key tasks?

    • You will collate and record details of all third-party suppliers and systems across Abellio and Abellio Bus.
    • Identify controls currently in place in relation to information security, GDPR and PCI.
    • Support a risk assessment to identify any gaps and the prioritisation of any required remediation.
    • Provide support when needed, aligning to the ISO27001/2 standard.  

    What must you have to do this job?

    Attainments: education, qualifications & training requirements

    • Pass in GCSE English and Maths

    General intelligence: experience & knowledge capabilities

    • A knowledge and experience of information security and data protection is highly desirable but not essential
    • Self-starter
    • Outstanding analytical dexterity with sound organisational aptitude.

    Personal attributes

    • Effective listening, communication, capable of adapting style to target audience.
    • Tenacity at getting the required information from internal and external stakeholders.
    • Self-starter with the ability to agree targets and achieve these and ask for support when needed.
    • Strong interpersonal skills, including written and oral communication skills.
    • Ability to work independently.
    • Flexibility to travel when required – must be commutable distance to one of Abellios offices, expected travel 1-2 days max per week.

    What would it be good for you to have to do this job?

    • Experience in information security, data protection or legal, either through prior work experience or studying in these fields would be highly desirable.
    • Experience in collating data from multiple sources/departments both internal and external would be advantageous.