Information Security Assurance Analyst

The Information Security Analyst will work as part of a team to support the delivery of the Information Security Framework across Life & Pensions business units and to external clients. Working with local Information Security Managers to support a robust programme of security assurance activity and ensuring that issues are identified, reported, addressed/escalated or accepted as appropriate.

* Undertaking policy and contractual compliance reviews -following standard processes, scoping, planning, completing and documenting reviews in order to improve understanding of policy compliance across L&P and identify areas in need of improvement. Following completion of a review and issue of the report, tracking the identified actions to an acceptable conclusion. The Security Assurance Analyst is accountable for ensuring that reviews are undertaken in a consistent complete and timely manner to an appropriate standard.
* Undertaking 3rd Party Security Due Diligence Assessments - Working with Commercial/Procurement teams and other key stakeholders such as Account Managers and BC to assess 3rd Party Security arrangements to an agreed schedule.
* Management of on-going Application Security Assessment programme. Co-ordination of risk based programme of application security reviews. Liaising with application owners to ensure that identified issues are progressed, owned and remediated or appropriate risk acceptances are in place.
* Issue management - Supporting Information Security Managers in the tracking and resolution identified through assurance activity.
* Supporting Information Security Managers and key stakeholders across L&P - Establishing effective working relationships (e.g. ITS, Group Security, SD) to enable completion of assurance activities, and providing support to assist Information Security Managers and Account Managers in discharging their responsibilities in relation to information security.
* Undertaking Assurance Activities in line with of a rolling plan for completion- Coordination and completion of proactive assurance activities including: annual procedure/policy reviews, security survey management, ad-hoc security testing, sweeps for key loggers etc.
* Ongoing development and production of Information Security Dashboard for L&P Division and business units. Working with key service providers to ensure that MI is delivered in a timely and accurate factor and raising any issues identified via the appropriate escalation channel.
* Management and coordination of Pen-testing approach - including scheduling and progressing identified issues.
* Other Data Security tasks as directed by the Divisional Data Security Manager
* Management of the Information Security Incident Log- ensuring that security incidents are recorded and tracked to resolution/closure of all actions..
* Oversight of Data Transfer Registers - ensuring that data transfer registers are complete and appropriate and working with Information Security Managers to address any issues. Production of quarterly status reports fro business units flagging any issues/risks.
* Coordination of Information Security Related Audit action -ensuring that all actions are owned and progressed to resolution.

Essential Experience:

* Qualified to degree level or equivalent experience.
* Self motivated individual with flexible approach to working.
* Desire to build own Information Security Knowledge
* Excellent interpersonal skills with the ability to explain technical problems to non-technical business stakeholders at all levels.
* Strong written and oral communication skills
* Experience of working within a financial services/regulated or outsourced service provision environment

Desired Experience:

* Industry recognised Information Security or audit Qualification
* Experience of working to an ISO27001/2 aligned framework.
* Experience of working in a controls testing/assurance environment

 

Follow Capita on twitter @capitacareers
Follow Capita on facebook @careersatcapita

Capita Resourcing welcome applications from all suitably qualified people regardless of gender, race, disability, age or sexual orientation.

Capita Resourcing is a trading name of Capita Resourcing Ltd. Services offered are those of an Employment Agency and Employment Business. Applicants will be required to register with us.

Job reference information
Advertiser Capita
Contact Name Andre Bennett
Telephone 01628 408100 (Please reference IT Job Board when calling)
Reference PCK392-120764_1404982714
Job reference information
Salary £25000.00 - £36500.00 per annum + car plus benefits
Location Cheltenham
Job Type Permanent
Date Posted 10-Jul-2014
Last Updated Date 11-Jul-2014
+ Add job to shortlist

You must be signed in to shortlist jobs

Share this job

More jobs like this