Loading

Connecting Linkedin...

Banner Default Image

Senior Information Security Analyst

  • Location

    Malta

  • Sector:

    Technology

  • Salary:

    Attractive

  • Contact:

    Andrius Petkus

  • Job Reference:

    7793

  • Published:

    about 2 months ago

  • Expiry:

    2021-05-01

  • Client Details:

    Castille

  • Consultant:

    Andrius Petkus

A global IT Solutions provider is looking for a Senior Information Security Analyst. You will be working with customers, suppliers and the technical teams to meet and exceed SLAs and KPIs together with continuous improvement schemes of both performance and process.

Responsibilities:

  • Advising the operations team on IT and Information Security matters, contributing to solution design

  • Information security control effectiveness evaluations and recommendations

  • Perform vulnerability and compliance scans

  • Act as a Public Key Infrastructure and eIDAS Subject Matter Expert (SME)

  • To be fully conversant with the information technology platforms, software, network design and hardware as detailed in the relevant contracts

  • Oversee security policies, standards, procedures and guidelines across the networks and environments and to be fully conversant with routine controlled activities

  • Continuously assess and mitigate both IT and information security risks

  • Prepare for and lead internal audits and support independent external audits

  • Ensure correct evidence for assurance and auditing is collected and controlled

  • Feed into the Release, Control and Validation process for new software and hardware introduced into the live environment via the formal Change Request process

  • Travel as required to perform internal audits and inspections at various sites (domestic and abroad)

  • To own the Distribution Resource Planning and associated testing, ensuring in the event of a disaster we are able to rebuild and recover the system/services within the contracted timeframes

  • Help lead and manage completion of the ISO 27001 implementation and ongoing recertification

  • Auditing and reporting on all aspects of Information Security related to UK and Malta sites

  • Initiate, facilitate and promote activities to create information security awareness within the organization

  • Monitor compliance with the organization's security policies and procedures among employees, contractors and other third parties and take corrective action where necessary

  • Monitor advancements of relevant Information Security technologies and threats

  • Help define, participate, monitor and when necessary lead global security incident response functions

  • Generate reports and executive summaries of various information security related metrics or risk assessments

  • Perform reviews of third parties to identify risks and potential remediation

  • Generate reports and executive summaries of third party assessments

  • Collaborate with colleagues outside of their own sphere of business, sharing best practice

Requirements:

  • Minimum of 3 years of experience in information security risk and compliance

  • Familiarity with Information Security Management Systems, control frameworks (ISO 27001, NIST CSF) and related risk assessment methodologies

  • General knowledge of enterprise network and systems architecture concepts and technologies, including but not limited to enterprise directory, enterprise integration architecture, identity and access management

  • CISM / CISA / CISSP Qualifications beneficial

  • Information Technology degree beneficial

  • Strong interpersonal and organisational skills

  • Depth of knowledge and ability to be able to withstand technical challenges on views and understanding regarding IT security and infrastructure design, but also able to incorporate others views and ideas to improve their own understanding and solutions proposed