Cyber Security Assurance Analyst 3 Month FTC - Enbrook Park, Folkestone

£40000 to £48000 depending on experience

Cyber Security Assurance Analyst 3-Month FTC

Salary £40,000 – £48,000 Per Annum depending on experience

Hybrid role: Home / Hub working (predominantly from home, typically once a month meeting in Folkstone).

The IT Security Department at Saga is recruiting. We are keen to appoint a Cyber Security Assurance Analyst, with at least 3 years’ experience of operating in the Cyber Security industry, to join our team to provide Governance oversight and services to deliver Saga’s Cyber Security Strategy and help manage internal and third-party cyber risk. You will also support other initiatives, such as the management of the Logical Access Management (LAM) of key technology systems, to meet full compliance requirements and always protect customers and our colleagues.

In this role you will play a key part to protecting Saga’s information and technology assets against internal and external cyber threats. You will support the delivery and maintenance of compliance requirements while implementing the Cyber Security Strategy.

We work in a hybrid way at Saga both at home and in the office. When you do come into the office, it’ll be with a real purpose in mind – to meet with your team, to work together, and of course to socialise and celebrate too! The Information Security team meet in person every month in Folkestone , Kent.

Role Responsibility

• Support the execution of the Cyber Strategic Plan while continuously seeking innovative methods to enhance the cyber security function, reduce risk across the organisation, and improve customer and colleague experiences.
• Oversee and manage cyber security governance controls in line with Saga’s Cyber Assurance Framework, including tracking performance through KPIs and SLAs, supporting vulnerability, management activities and providing relevant management information as needed.
• Assist with compliance activities such as policy and process assessments / improvements, ISO27001 and PCI-DSS re-certifications and audits.
• Implement and ensure the efficiency of internal and third-party cyber risk mitigation controls to align with risk appetites. Utilising internal reviews and third-party risk management systems and processes to ensure third parties meet Saga security standards.
• Stay updated on the external cyber threat landscape through participation in internal/external events and obtaining certifications and share best practices with colleagues.
• Manage the technology access review process, coordinating with technology teams, broader business functions, and audit teams to ensure proper system access management and review.
• Assist and support the incident management processes, including handling incidents, performing root cause analysis, documenting lessons learned, creating and ongoing reviews of playbooks.
• Offer cyber consultancy services to support business initiatives, ensuring compliance and risk appetite requirements are met.
• Adhere to our Governance and Business Code of Conduct, consistently acting with integrity and due diligence.

The Ideal Candidate

You will already have a strong understanding of compliance and regulations for cyber risks to businesses, especially those that operate in heavily regulated markets such as insurance and financial products. You will have worked in an auditing and monitoring role and also demonstrate the following skills;

• Have at least 3 years’ experience of operating in the Cyber Security industry
• Have a good understanding of risk management approaches and the application of Cyber risk management controls.
• A broad understanding of the Cyber Security domain and associated compliance requirements such as FCA, GDPR, and PCI.
• Broad knowledge and understanding of cyber-attack techniques and vulnerability testing approaches.
• Have experience in incident response and management.
• Experience in undertaking Risk assessments, control testing and reporting in a regulated environment.
• Proven stakeholder management experience and be able to demonstrate good written and verbal communications skills.
• Can demonstrate previous experience in the planning, leading and delivering of audits and compliance activities.

Saga Values: Make it Happen, Do the Right Thing, Customer First, Excellence Every Day,

Our People Make Us Special

Package Description

Everyday our colleagues deliver exceptional experiences to our customers. We believe exceptional work deserves even more exceptional rewards, that\’s why we have put together an amazing benefits package for all colleagues.

BENEFITS AVAILABLE TO ALL COLLEAGUES:

• 25 days holiday + bank holidays
• Option to purchase additional leave up to 5 extra days
• Pension scheme matched up to 10%
• Life assurance policy on joining us
• Wellbeing programme
• Colleague discounts including family discounts on cruises and holidays
• Range of reductions and offers from leading retailers, travel groups and entertainment companies
• Enhanced maternity and paternity leave
• Grandparents leave
• Income protection
• Access to Saga Academy, our bespoke learning platform

About the Company Over the past 70 years we have become the UK\’s specialist provider of products and services to people aged over 50 in the UK. The Saga brand has become one of the most recognised and trusted brands amongst UK consumers in this demographic, recognised for its high quality products and exceptional standards of service. These include cruises and holidays, insurance, personal finance and the Saga Magazine.At Saga we are committed to treating all employees fairly and to offering equal opportunities in all aspects of employment and advancement. We value diversity not just because it is the right thing to do, but because diverse teams perform better.Fair consideration is given to applications from all applicants, including those with disabilities and those over who are over 50 as we are champions of age inclusivity. We are an official Disability Confident Committed employer and ensure that our recruitment process is inclusive and accessible and we will make reasonable adjustments as required. For more information on our DEI policies please visit our Saga Careers page. Saga does not accept agency CVs unless specifically engaged on the role by the Talent Acquisition Team. Please do not forward CVs to our recruiters, employees or any other company location. Saga will not be responsible for any fees related to CVs received in this unsolicited manner.Job Reference: saga/TP/205960/3167