Applications for this job are now closed
Closing soon
We are looking for a Cyber Security Compliance Analyst who will ensure that the organisation's devices, operations and procedures meet government and industry compliance standards. They will research regulations and policies, communicate requirements, and apply for compliance certification on behalf of the company.
Key responsibilities
Laptop/Device Tasks
- Initial Laptop build and security setting configuration
- Installing Security and Management Tools
- Providing security awareness training
- Monitoring dashboards for security alerts and contacting staff to remedy any issues
- Providing a 'help desk' IT Security Issues
- Managing a process for annual device checks
- Managing the return/rebuild/redeployment of devices.
SaaS/Software Tasks
- Managing requests for access to software/subscriptions
- Ensuring MFA is in use for all accounts
- Responding to security alerts from Cloud Security consoles
- Checking use of licences and revoking/reallocating as appropriate
- Managing permissions in cloud services and revoking excessive ones
- Managing DPIA and business continuity plans for company data in cloud platforms
Network/Office Tasks
- Checking security logs for WiFi/Firewall, escalating breach attempts
- Monitoring use of company network
- Ensuring security updates and patches are applied to networking/office-based equipment.
Security Events
- Managing initial incident responses
- Identifying and resolving non-compliant devices.
Policies and Regulations:
- Researching industry compliance regulations and policies
- Evaluating internal operational and procedural compliance
- Analysing and updating existing compliance policies and related documentation.
- Creating new policies where required
- Communicating compliance policies and guidelines
- Developing and implementing new compliance policies and procedures as required
- Applying for compliance certifications
- Training employees on industry compliance requirements.
Key skills/experience
- Industry-related degree or equivalent
- Ability to draft compliance policies, procedures, and related documentation
- Problem solving
- Effective research and professional networking skills
- Ability to accurately complete applications for compliance certification
- Ability to effectively train employees
- Exceptional communication and interpersonal skills.
Desirable skills
- Familiarity with UK Government Information Security Standards
- Experience with Security Tools (Firewalls, MDM, Encryption, Security Policies)
- Experience with OSX and Windows Device security settings
- Knowledge of applying NCSC Guidance
- Knowledge of NIST or ISO27001.
Package and benefits
- Competitive salary, dependent on experience
- Flexible working / Work from home
- Generous annual discretionary bonus
- 25 days annual leave + bank holidays
- Up to 10 days allocated development training per year
- Contributory pension
- Gym membership
- Annual away days and social events.
