Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: You'll plan and execute various Information Security activities, ensuring compliance and effectiveness.
- Company: GLORY is a leading IT services company focused on innovative solutions and security.
- Benefits: Enjoy 25 days holiday, private medical insurance, and extensive retail discounts.
- Why this job: Be part of a new team making a real impact on information security and compliance.
- Qualifications: Experience in audit functions and knowledge of security frameworks like ISO27001 and NIST are essential.
- Other info: This role offers opportunities for ongoing training and development.
The predicted salary is between 36000 - 60000 Β£ per year.
Join or sign in to find your next job Join to apply for the Information Security Compliance Analyst role at GLORYJoin to apply for the Information Security Compliance Analyst role at GLORYGet AI-powered advice on this job and more exclusive features.Department: Legal β Information SecurityDepartment: Legal β Information SecurityLocation: UK/Basingstoke
Description
In this newly created position, you will be responsible for planning, preparing and undertaking a wide range of Information Security activities. You will work closely with internal and external audit teams and other stakeholders to ensure the effectiveness and compliance of the organization\βs information security measures. You will also work closely with the procurement team, business units, and third-party vendors to ensure that all third-party risks are identified, assessed, and managed effectively. Strong knowledge of Information Security governance frameworks is essential for this position.
You will be required to use your knowledge and experience to test, document, evaluate, remediate, and improve controls related to Information Security for effectiveness and operational efficiency. You will need to be able to audit all areas of the business where it is needed and take the lead when required. Within this role you will be responsible for supporting customer audits and responding to customer queries on Information Security and Information Systems and the associated functional processes and controls. You will also support third-party auditors to co-ordinate external audit activities to maintain and ensure compliance with industry standards. This will include managing the closure of any actions or findings raised. This new role offers an opportunity to be part of newly established functions to ensure we can evidence the measures put in place to protect our business and that of our customers.
You must be a highly effective communicator and a supportive team player, taking a consultative approach whilst maintaining the integrity and independence of the General Affairs department. You will combine an ability to navigate organisational politics and manage stakeholders, with a talent for operational delivery and a strong sense of accountability for results.
Main Responsibilities
Review existing documentation of IT controls, business processes, policies, procedures, and management reports for effectiveness and sustainabilityReview, document, evaluate, and test manual and automated controls throughout the IT environmentDevelop and implement audit testing methodologiesDesign audit programs to ensure ongoing evaluation and validation of IT control effectivenessLead and conduct Information Security internal and external audits working to industry standards such as CIS, SOX and ISO27001Assessment and evaluation of suppliers\β capabilities against applicable requirements, including GGS policies, standards and proceduresLead and conduct Information Security risk assessments of suppliers and vendorsWorking across internal stakeholders to collaborate and ensure that controls adhere to defined policies, process and proceduresWork with procurement and business units to ensure that suppliers and vendors comply with cyber security policies and standards.Lead the completion of customer RFP, RFI due-diligence responses. working across multiple functions, including Sales, Product Development, Information Security and Information Systems to collate applicable informationInterpret audit results and make conclusions on the adequacy and reliability of controls; prepare and present reports as necessaryPrioritize audit findings based on severity of risk and non-compliance
Skills, Knowledge & Expertise
Must have experience of working in an audit functionKnowledge of Information Security frameworks such as NIST, CIS, SOX, Cyber Essentials, ISO27001, PCI-DSS and SOCContribute to an effective Information Security culture in support of audit objectivesEstablish and maintain relationships across stakeholders, functional teams and external audit teams on relevant standards and frameworksA good understanding of Information Security controlsAbility to appropriately identify and manage Information Security risks identified through audit completion in line with the business\βs risk appetiteAble to produce clear and comprehensive audit documentationStrong written and verbal communication skillsCommitment to excellence and high standards; strong organizational skills; able to manage time, priorities and workloadAbility to work autonomously and drive improvementComfortable to challenge seniority and existing processesKnowledge of OneTrust or ServiceNow an advantage
Job Benefits
25 days\β holiday a year with the opportunity to buy up to five additional days each yearCompetitive Company pension schemeOngoing training and developmentPrivate medical insurance for all employees, (enhanced membership can be purchased for other family members)Life assuranceIncome protection schemeDental insurance for all employeesEmployee assistance programmeLoyalty awardsEmployee wellbeing events and Mental Health First AidersEmployee My Benefits portal offering extensive retail discountsOpportunity to volunteer for charity work
Seniority level Seniority level AssociateEmployment type Employment type Full-timeJob function Job function Information TechnologyIndustries IT Services and IT ConsultingReferrals increase your chances of interviewing at GLORY by 2xSign in to set job alerts for \βInformation Security Analyst\β roles. Bracknell, England, United Kingdom 5 days agoGuildford, England, United Kingdom 1 month agoReading, England, United Kingdom 1 week agoReading, England, United Kingdom 1 week agoWe\βre unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr
Information Security Compliance Analyst employer: GLORY
Contact Detail:
GLORY Recruiting Team
StudySmarter Expert Advice π€«
We think this is how you could land Information Security Compliance Analyst
β¨Tip Number 1
Familiarise yourself with the specific Information Security frameworks mentioned in the job description, such as NIST, CIS, and ISO27001. Being able to discuss these frameworks confidently during your interview will demonstrate your expertise and commitment to the role.
β¨Tip Number 2
Network with professionals in the Information Security field, especially those who have experience in audit functions. Engaging with them on platforms like LinkedIn can provide you with valuable insights and potentially lead to referrals.
β¨Tip Number 3
Prepare to discuss real-world examples of how you've managed Information Security risks or conducted audits in previous roles. This will help you illustrate your problem-solving skills and ability to handle challenges effectively.
β¨Tip Number 4
Research GLORY's current Information Security measures and any recent news related to their compliance efforts. Showing that you understand their business context will set you apart and demonstrate your genuine interest in the position.
We think you need these skills to ace Information Security Compliance Analyst
Some tips for your application π«‘
Tailor Your CV: Make sure your CV highlights relevant experience in Information Security and compliance. Focus on your knowledge of frameworks like NIST, CIS, and ISO27001, and include specific examples of past audits or risk assessments you've conducted.
Craft a Strong Cover Letter: In your cover letter, express your enthusiasm for the role and the company. Mention how your skills align with the responsibilities outlined in the job description, particularly your ability to manage stakeholders and communicate effectively.
Highlight Relevant Skills: Emphasise your experience with audit functions and your understanding of Information Security controls. Be sure to mention any familiarity with tools like OneTrust or ServiceNow, as these could set you apart from other candidates.
Proofread Your Application: Before submitting, carefully proofread your application materials. Look for any spelling or grammatical errors, and ensure that all information is clear and concise. A polished application reflects your attention to detail, which is crucial in Information Security.
How to prepare for a job interview at GLORY
β¨Know Your Frameworks
Familiarise yourself with key Information Security frameworks such as NIST, CIS, SOX, and ISO27001. Be prepared to discuss how these frameworks apply to the role and how you have used them in past experiences.
β¨Demonstrate Audit Experience
Highlight your previous experience in audit functions. Be ready to share specific examples of audits you've conducted, the methodologies you used, and the outcomes of those audits.
β¨Showcase Communication Skills
As a compliance analyst, strong communication is crucial. Prepare to demonstrate your ability to convey complex information clearly, both verbally and in writing. Consider discussing how you've effectively communicated audit findings to stakeholders in the past.
β¨Prepare for Scenario Questions
Expect scenario-based questions that assess your problem-solving skills and ability to manage risks. Think about potential challenges you might face in the role and how you would address them, particularly in relation to third-party vendors and compliance.