At a Glance
- Tasks: Join us in shaping a sustainable future through innovative information security solutions.
- Company: Octopus Energy Group, a leader in the energy sector with a unique culture.
- Benefits: Flexible salary discussions, remote work, and a supportive team environment.
- Other info: Dynamic team with opportunities for growth and collaboration on exciting projects.
- Why this job: Make a real impact on security while working with cutting-edge technology.
- Qualifications: 2+ years in InfoSec, strong analytical skills, and a passion for security.
The predicted salary is between 40000 - 50000 £ per year.
Help us use technology to make a big green dent in the universe! It's a really exciting time in energy. Help us make a real impact on shaping a better, more sustainable future. We are very excited to be building a small and efficient Cyber and Information Security team at Octopus Energy Group. We are looking for ambitious, knowledgeable, and experienced InfoSec Analysts to join our team, to grow with the rest of the company, and ensure we continue to do so in a secure and safe way.
You will be a key partner in defining what Security is at Octopus Energy Group. We will be shaping this team to provide a world class support service to our employees, building our way out of problems and undertaking transformational organisational change. You'll be primarily supporting our Octopus Energy Group services, while working with various Group Subsidiaries to expand our capabilities and develop creative solutions to business challenges and opportunities to continually improve our services.
Specifically, we're looking for InfoSec Analysts with at least 2 years of relevant experience to help us improve security across the Octopus Energy Group. If you're passionate about Information Security and driving a positive security culture, we encourage you to apply!
What you'll do:
- Maintaining and improving our Information Security Management System (ISMS) and associated policies, guidelines, standards and procedures
- Contributing to the development of our security assurance function
- Performing security risk assessments and maturity assessments for OE Group
- Promoting a positive security culture and raising awareness through training and other initiatives
- Supporting the implementation of security processes and requirements
- Providing security advice and guidance to the wider technical team
- Liaising with stakeholders in relation to security issues and providing remediation/improvement recommendations
- Supporting Octopus Energy Group's audit & compliance automation programs, enabling easy demonstration of compliance as we scale
- Working with the wider Security team to set the security strategy for Octopus Energy Group and its subsidiaries
- Keeping up to date with the latest security trends, and evaluating their potential impact on our systems, assisting the business to understand and manage associated risks
This is a varied role in a growing team. You'll have the opportunity to get involved in other security-related projects and initiatives as needed. We encourage you to take on new challenges that align with your skills and interests, and to collaborate with other teams to drive improvements in security across our entire organisation.
What you'll have:
- A passion for security, a drive to make things better by harnessing technology
- Experience in, or knowledge of, automating GRC and other security processes to reduce manual work
- Strong analytical and problem-solving skills, with the ability to identify and mitigate security risks
- A good understanding of information security principles and the ability to communicate this to people who aren't subject matter experts
- Experience producing or supporting the delivery of security awareness programs in different business environments
- Knowledge of industry and regulatory security standards, such as ISO 27001, SOC2, and GDPR
A good candidate will have experience in at least some of the areas mentioned, we're not expecting any candidate to be an expert in all areas!
What will help:
- Security certifications (any of the famous abbreviations)
- Security qualifications (e.g. apprenticeships or degrees)
- Experience working in organisations that maintain ISO 27001 and/or SOC 1 and SOC 2 type II certifications
- A wider understanding of technology, especially AWS (or other CSPs)
- A background in a technical role or technical knowledge through education or training
Why else you'll love it here:
Wondering what the salary for this role is? Just ask us! On a call with one of our recruiters it's something we always cover as we genuinely want to match your experience with the correct salary. The reason why we don't advertise is because we honestly have a degree of flexibility and would never want salary to be a reason why someone doesn't apply to Octopus - what's more important to us is finding the right octofit!
Octopus Energy Group is a unique culture. An organisation where people learn, decide, and build quicker. Where people work with autonomy, alongside a wide range of amazing co-owners, on projects that break new ground. We want your hard work to be rewarded with perks you actually care about! We were recently named the UK's top company to work for, and we ranked in the top ten in the Sunday Times Best Places to Work 2024.
Our process usually takes up to 4 weeks, but we'll always do our best to flex around what works for you. Along the way, you'll chat with our recruitment team and your Recruiter will help you throughout different stages. Got any burning questions before then? Drop us a message at hiring@octoenergy.com and we'd love to help!
If this sounds like you then we'd love to hear from you. Are you ready for a career with us? We want to ensure you have all the tools and environment you need to unleash your potential. Need any specific accommodations? Whether you require specific accommodations or have a unique preference, let us know, and we'll do what we can to customise your interview process for comfort and maximum magic!
Studies have shown that some groups of people, like women, are less likely to apply to a role unless they meet 100% of the job requirements. Whoever you are, if you like one of our jobs, we encourage you to apply as you might just be the candidate we hire. Across Octopus, we're looking for genuinely decent people who are honest and empathetic. Our people are our strongest asset and the unique skills and perspectives people bring to the team are the driving force of our success. As an equal opportunity employer, we do not discriminate on the basis of any protected attribute. Our commitment is to provide equal opportunities, an inclusive work environment, and fairness for everyone.
StudySmarter Expert Advice🤫
We think this is how you could land Remote Information Security Analyst in Wigan
✨Get Involved in the Cybersecurity Community
Diving into the cybersecurity community is key for landing that full-time gig. Join forums like Reddit's r/cybersecurity or attend local meetups to connect with industry veterans and other job seekers. Networking is everything in this field—don’t just be a passive lurker!
✨Show Off Your Skills with Capture the Flag Competitions
Participate in Capture the Flag (CTF) competitions; these are not just a fun way to boost your skills but also a chance to showcase your talent to potential employers. Many companies, including Grabjobs, love seeing candidates who actively engage in these challenges.
✨Tailor Your Online Presence
Make sure your LinkedIn and any professional profiles reflect your cybersecurity expertise. Share your projects, whether they’re personal or from a previous role, to catch the eye of hiring managers. This is how they’ll find your passion and commitment to the field!
✨Apply Directly Through Grabjobs
Don’t forget to head straight to our website and check out any openings for cybersecurity roles at Grabjobs. Applying directly can sometimes give you an edge, especially if you can mention that you've been following our work or engaging in the community.
We think you need these skills to ace Remote Information Security Analyst in Wigan
Some tips for your application 🫡
Show off your technical skills:In cybersecurity, it's crucial to highlight your technical prowess. Make sure your CV showcases specific skills like network security, penetration testing, or threat analysis. If you have relevant certifications (like CEH or CISSP), pop those on the front page to grab attention!
Tailor your portfolio for the role:Even for a full-time role, a portfolio can set you apart. If you've worked on any cybersecurity projects—be it CTF challenges, security assessments, or research papers—include these in your application. This demonstrates not just your skills, but also your hands-on experience!
Use real-world examples:When writing your cover letter, don’t just stick to your qualifications. Share real-world examples of how you’ve tackled security issues or vulnerabilities. This gives the hiring team at Grabjobs insight into your practical problem-solving abilities and makes your application memorable.
Demonstrate your passion for cybersecurity:Cybersecurity is an ever-evolving field, so show us that you’re always learning! Mention any recent courses, webinars, or industry events you’ve attended. This not only exhibits your enthusiasm but also signals to Grabjobs that you’re committed to staying ahead in the game.
How to prepare for a job interview at Grabjobs
✨Sharpen Your Technical Skills
For a role in cybersecurity, it’s essential to be up-to-date with the latest tools and techniques. Brush up on your knowledge of firewalls, intrusion detection systems, and vulnerability assessment tools. Be ready to discuss specific scenarios where you’ve applied these skills, as hands-on experience can really set us apart in interviews.
✨Prepare for Scenario-Based Questions
Expect the interviewers at Grabjobs to throw in some hypothetical situations to see how you’d handle them. Think about common security breaches or incidents and be prepared to explain how you would respond. This not only shows your problem-solving skills but also your understanding of real-world cybersecurity challenges.
✨Highlight Your Certifications
Certifications like CompTIA Security+, CISSP, or CEH can give you a significant edge in a full-time role in cybersecurity. Make sure to mention these during your interview and be prepared to discuss what you learned through those certifications and how they relate to the position at Grabjobs.
✨Show Your Passion for Cybersecurity
Since you’re going for a full-time gig, showing genuine enthusiasm for the field can make all the difference. Share any personal projects, blogs, or communities you’re part of that relate to cybersecurity. This not only showcases your passion but also your commitment to staying engaged in this ever-evolving field.