The Security Risk Analyst will perform risk assessment of various business areas and be able to present results, recommend actions and drive best practice. They will maintain the risk management framework of the company and introduce risk management principles and standards.
To be considered for the role the Security Risk Analyst will have the following experience:
- Proven track record with risk compliance, auditing, data protection, information security, risk management
- Knowledge of information risk and security management standards, frameworks, regulations such as CIS Top20, ISO/IEC 27001, NIST 800-53, BSIMM, GDPR, FAIR, etc.
- Expertise in taking policy statements and translating them into actual, implementable, risk and security controls that can be monitored, audited and constantly improved. Ability to judge their effectiveness and recommend improvements.
- Skills with data mapping and risk assessment tools and processes
The candidate can be based near any of my client’s offices i.e. Brighton, Exeter, Reading, Bristol the role allows a degree of flexible and remote working. It is offered on a permanent basis with basic salary up to £60K and performance-based bonus.