Information Security Compliance Analyst in London

Curinos empowers financial institutions to make better, faster and more profitable decisions through industry-leading proprietary data, technologies and insights. With decades-long expertise in the financial services industry and a relentless focus on the future, Curinos technology and analytics ecosystem allows clients to anticipate customer needs and optimize their go-to market decisions in an increasingly competitive market. Curinos operates under a hybrid modality. This individual may work from the London office or remotely (UK).

The Information Security Compliance Analyst will play a key role in developing, implementing, and maintaining a robust information security governance, risk management, and compliance program. This role involves assessing and managing risks, ensuring compliance with relevant regulations and standards, and promoting a culture of security awareness across the organization.

Responsibilities:

• Assisting with the day-to-day management and maintenance of the Information Security Management System (ISMS), including the development and upkeep of current information security policies, standards, and procedures.
• Designing, developing and conducting audits on internal security controls.
• Conducting risk assessments to identify potential threats and vulnerabilities, including risks associated with projects and new initiatives.
• Reviewing, validating, categorizing and prioritizing potential threats and vulnerabilities into actionable remediation tasks and working with security engineers to ensure SLAs for vulnerability remediation are met.
• Maintaining accurate records, ensuring that risk exceptions and non-conformities are properly documented and managed through formal processes.
• Supporting project management activities by attending project meetings to ensure that security and compliance risks are considered during change management, SDLC and across multiple teams and disciplines.
• Supporting contract reviews, ensuring security and data compliance terms are properly assessed and addressed.
• Assisting with supplier assurance activities, including conducting due diligence on new suppliers, assessing software and services, and reviewing existing suppliers.
• Monitoring and ensuring compliance with relevant regulations, standards, and frameworks (e.g., ISO 27001, NIST800-53R).
• Preparing monthly and quarterly reports to provide feedback and insights to senior leadership.

Desired Skills & Expertise:

• Proven experience in information security, with hands-on involvement in supporting and administering an ISMS.
• Experience implementing, managing or using one or more GRC tools.
• High level understanding or working knowledge of IT security concepts, technologies, and systems, such as network protocols and Identity and Access Management (IAM).
• Working knowledge of regulatory requirements such as GDPR, CDPC and information security frameworks such as ISO, CIS, NIST.
• Excellent organizational skills with attention to detail and logical approach to their work.
• A proactive mindset, with the ability to anticipate and address potential risks rather than react to issues after they arise.
• Strong communication skills, with strength in detailed documentation, reporting and follow-up.

Why work at Curinos?

• Competitive benefits, including a range of Financial, Health and Lifestyle benefits to choose from.
• Flexible working options, including home working, flexible hours and part time options, depending on the role requirements.
• Unlimited PTO policy, floating holidays, volunteering days and a day off for your birthday!
• Learning and development tools to assist with your career development.
• Work with industry leading Subject Matter Experts and specialist products.
• Regular social events and networking opportunities.
• Collaborative, supportive culture, including an active DE&I program.
• Employee Assistance Program which provides expert third-party advice on wellbeing, relationships, legal and financial matters, as well as access to counselling services.

Applying:

We know that sometimes the 'perfect candidate' doesn't exist, and that people can be put off applying for a job if they don't meet all the requirements. If you're excited about working for us and have relevant skills or experience, please go ahead and apply. You could be just what we need!

If you need any adjustments to support your application, such as information in alternative formats, special requirements to access our buildings or adjusted interview formats please contact us and we’ll do everything we can to help.

Inclusivity at Curinos:

We believe strongly in the value of diversity and creating supportive, inclusive environments where our colleagues can succeed. As such, Curinos is proud to be an Equal Opportunity Employer. We do not discriminate on the basis of race, colour, ancestry, national origin, religion, or religious creed, mental or physical disability, medical condition, genetic information, sex (including pregnancy, childbirth, and related medical conditions), sexual orientation, gender identity, gender expression, age, marital status, military or veteran status, citizenship, or other protected characteristics.