Information Security Analyst

Posted 7 Days Ago
Be an Early Applicant
Hiring Remotely in United Kingdom
Remote
Mid level
Information Technology
The Role
The Information Security Analyst will design, implement, and maintain security systems to protect SaaS applications and networks from cyber threats. Responsibilities include conducting risk assessments, monitoring networks for security issues, investigating breaches, installing security software, documenting incidents, and staying current on security trends to strengthen the company’s security posture.
Summary Generated by Built In

IsoMetrix, is a leading integrated risk management software company with offices in the USA, Canada, Australia, United Kingdom, and South Africa. We provide state-of-the-art solutions for ESG, EHS and GRC management.

Backed by the leading private equity firm Carlyle, an investment firm with $293bn of assets under management, SaaS-oriented business model. Crucial to the future success of the business.

We are looking for a candidate with suitable qualifications and experience to join our dynamic and passionate team in an IT development environment.

Main purpose of Job:

Design, implement and maintain security systems to protect SaaS and managed service applications, computer networks, servers and endpoints from vulnerabilities and cyber-attacks. Improve our overall Information security posture with the emphasis on the importance of proactive security measures, continuous learning, awareness programs and collaboration from an Information Security and personal information protection perspective within IsoMetrix.

Primary Responsibilities:

Information Security

  • Conduct continuous extensive Cyber and Information Security Risk Assessments, and implement effective controls to mitigate and minimize security risks.
  • Monitor computer networks for security issues, utilising advanced tools and technologies to detect and respond to potential threats promptly.
  • Investigate security breaches and other cybersecurity incidents, conducting thorough analysis to determine the root cause and implementing appropriate remediation measures.
  • Install, configure, and operate security measures and software to protect systems and information infrastructure, including applications, firewalls, intrusion detection systems, and data encryption programs.
  • Document security breaches and assess the damage they cause, preparing detailed reports for management and stakeholders to facilitate informed decision-making.
  • Collaborate with the Information Technology team to perform comprehensive tests and assessments, identifying network vulnerabilities and recommending effective countermeasures.
  • Proactively address detected vulnerabilities to maintain a high-security standard, implementing necessary patches, updates, and configuration changes.
  • Stay current on IT security trends and news, continuously expanding knowledge and expertise to effectively mitigate emerging threats and vulnerabilities
  • Develop and maintain company-wide best practices for IT security, ensuring adherence to industry standards and regulatory requirements
  • Perform penetration testing in collaboration with our security partners to conduct third-party testing and validation, assessing the effectiveness of current security measures and identifying and remediating vulnerabilities in the system.
  • Provide guidance and support to colleagues in installing security software and understanding information security management, promoting a culture of security awareness and compliance.
  • Conduct research on security enhancements, evaluating new technologies and methodologies, and making recommendations to management for improving the overall security posture.
  • Stay up to date on information technology trends and evolving security standards, attending relevant conferences, training programs, and certifications to enhance professional development.

Protection of Personal Information:

  • Embedding and improving of pre-determined data privacy controls.
  •  Monitor ongoing compliance and perform personal information risk assessments.
  • Ability to understand and respond to data privacy risk assessment questionnaires by clients.

IT Strategy

  • Brainstorm new ideas and ways to improve information systems by consolidation and efficiencies
  • Adequate disaster recovery strategy, high availability, backup and recovery and successful execution. 
  • Stay current with software partners and vendors requirements and liaise with account managers to maintain sustainable relationships with customers.
  • Partner certification requirements are achieved and communicated to management.
  • Information Systems adoption strategy.
  • ISO 27001:2022 support and ongoing compliance.
  • SOC 2 support and ongoing compliance

Minimum education experience:

  • Bachelor's degree or Diploma in computer science or related field.
  • Cyber Security Practitioner (CSP) or CCSP (Certified Cloud Security Professional) advantageous.
  • Azure cloud security, ideally passing either AZ-500 or MS-500 training.
  • 5 years’ experience in information security and data protection.
  • 3 years’ experience in protection of personal information and regulatory requirements.
  • Proven understanding of relevant legislation governing protection of personal information.
  • Ability to interpret regulatory requirements and translate into practical solutions to show compliance.
  • Experience with computer network penetration testing and techniques.
  • Understanding of firewalls, proxies, SIEM, antivirus, and IDPS concepts.
  • Ability to identify and mitigate network vulnerabilities and explain how to avoid them.
  • Understanding of patch management with the ability to deploy patches in a timely manner while understanding business impact.

Personal attributes:

  • Keen attention to detail
  • Problem-solving abilities
  • Solid knowledge base
  • Ability to work in a pressurized environment
  • Ability to accommodate flexible working hours
  • Ability to multi-task, prioritize as well as manage time efficiently
  • Possess strong interpersonal skills and effective communication abilities at all management levels, including the capacity to convey technical information in layman's terms to non-technical roles, such as those in HR and finance.
  • Ability to articulate trends clearly and confidently
  • Ability to work within company policies and procedures
  • Ability to always keep quality of work

The IsoMetrix DNA encompasses the following core values and behaviours:

  • Own It!
  • Do the right thing
  • Embrace Ideas
  • Win together
  • Think Beyond

      Top Skills

      Information Security,Cybersecurity
      The Company
      Alpharetta, GA
      218 Employees
      On-site Workplace
      Year Founded: 2002

      What We Do

      At IsoMetrix we develop world leading integrated risk and compliance management software solutions for EHS, GRC and sustainability experts who know what they want.

      A growth equity fund managed by The Carlyle Group, a global investment firm with $223 billion of assets under management, has acquired a majority stake in IsoMetrix to help accelerate its research & development and international expansion plans.

      Our software allows businesses to run sustainably. This provides powerful and wide-reaching benefits to our planet, the people and communities we work and live with. It also leads to more profitable and resilient businesses.
      In helping our customers to do good, we also help them do well.

      With offices in the USA, Canada, Australia and South Africa, IsoMetrix is well positioned to provide international companies with support across the globe.

      Similar Jobs

      Cencora Logo Cencora

      Lead Analyst - Information Security

      Healthtech • Logistics • Pharmaceutical
      Remote
      United Kingdom
      46000 Employees

      Bullhorn Logo Bullhorn

      Product Support Analyst

      Cloud • HR Tech • Productivity • Software
      Remote
      United Kingdom
      1400 Employees

      CrowdStrike Logo CrowdStrike

      Associate Analyst, Falcon Complete (Remote, GBR)

      Cloud • Information Technology • Sales • Security • Cybersecurity
      Remote
      United Kingdom
      10000 Employees

      CrowdStrike Logo CrowdStrike

      Sr. Intelligence Analyst II (Remote)

      Cloud • Information Technology • Sales • Security • Cybersecurity
      Remote
      United Kingdom
      10000 Employees

      Similar Companies Hiring

      MassMutual India Thumbnail
      Insurance • Information Technology • Fintech • Financial Services • Big Data
      Hyderabad, Telangana
      Silverfort Thumbnail
      Security • Sales • Information Technology • Cybersecurity • Automation
      SG
      357 Employees
      Jobba Trade Technologies, Inc. Thumbnail
      Software • Professional Services • Productivity • Information Technology • Cloud
      Chicago, IL
      45 Employees

      Sign up now Access later

      Create Free Account

      Please log in or sign up to report this job.

      Create Free Account