NIST Cyber Assurance Analyst

 

Main characteristics

Location

Chatham, Kent

Company

Intec Select Ltd

Salary

£50000 - £55000/annum Hybrid + 15% bonus + Excellent Benef

Employment type

Permanent

Category

IT

Job summary

NIST Cyber Assurance Analyst

Salary - £55,000 (circa) + Bonus + Hybrid working (3 days on site) + Excellent Benefits

Company:
A leading financial services corporation is currently recruiting an NIST Cyber Assurance Analyst who has strong experience performing security assessments for IT systems. Ideally, you will have recent experience conducting 3rd party risk assessments, vulnerability management and commercial capabilities in ISO/IEC 27001 and NIST information security management to be based in Chatham, Kent.

The key purpose of this role is to support the Information Security programme and framework. You will focus on core areas such as risk management, third-party security due-diligence reviews, ensuring compliance with legal, regulatory and relevant security standards such as ISO 27001, PCI DSS and the UK data protection act / GDPR. You will also support the security awareness and training activities as defined by an annual schedule of targeted training and testing across our clients.

Core responsibilities:

Assist with implementation, monitoring and assurance reviews of IT security controls
Maintain information security frameworks, policies, standards and guidelines
Support the cyber incident response activities during the initial response analysis, containment and recovery phases of a cyber-incident
Implement process improvements and efficiencies as defined by the agreed service improvement plans
Assist with the definition and enforcement of configuration standards and policies for security technologies.
Conduct research and provide recommendations on emerging threats in support of security enhancements and process improvements.
Review and respond to alerts from systems including SEIM solutions and vulnerability monitoring services
Support the Groups security awareness and training programme ensuring it meets all industry regulations, standards, and compliance requirements and engages employees to understand and adopt the principles in the manner which they work
Support the evolution and content definition of the security awareness programme to incorporate and address emerging technologies and risks
Support the Vulnerability Management reporting and IT remediation planning
Generate monthly reports that measure employee engagement with security awareness training and trends
Experience Requirements:

Experience of working within an information security role ideally within FS or a regulated environment
Experience of performing security assessments for IT systems / processes
3rd party risk assessment experience
Vulnerability management / remediation planning
External and internal audit management capabilities
Ability to deliver security awareness planning
Understanding of IT Infrastructure
Capabilities in ISO/IEC 27001 and NIST information security management frameworks
Maintain at least one current professional certification: Any SANS GIAC Security certifications (Administration, Software, or GSE Expert), ISC2 CISSP, or any security systems vendor administration-level certifications
Rewards Package:
£55,000 / 15% Bonus / Work from home options / Flexible working / 25 Days Holiday / Medical Cover / Life Cover / Pension / Flexible Benefits

Benefits: Hybrid + 15% bonus + Excellent Benef