Information Security Compliance Officer
InfoSum, United Kingdom
Job Description
InfoSum is the world’s leading data collaboration platform, providing solutions to the world’s largest enterprises to allow collaboration across data sources and to deliver richer customer experiences that prioritise consumer privacy. As a people-first organisation, we can offer you the personal and professional flexibility needed to get the job done, to grow with us, and help challenge the status quo. If you want to work with a business that encourages collaboration, champions the idea that the sum is greater than its parts, then we want to hear from you.
A solid understanding of technical cyber security concepts is needed but with a focus on Risk, Compliance and Governance (GRC)
In this position, hands-on experience of maintaining information security certifications and ensuring compliance to industry standards (namely ISO 27001 and Cyber Security Essentials Plus) is a necessity, along with the technical ability to navigate around AWS.
- Provide support for ISO 27001 audits (internal and external)
- Involved in compliance audits and technical evidence gathering (systems and applications)
- Monitor and respond to security service desk tickets
- Policy enforcement spot checks (checking firewall rules and cloud inventory).
- Assist the wider Sec Ops team duties.
- Respond to security generated alerts, analyse logs and traffic patterns.
- Provide analysis and trending of security log data and network traffic from many monitoring points.
- Integrate and share information with other analysts and other teams.
Requirements
- Good level of knowledge in IT and networking fundamentals across: Operating Systems and Cloud vendors
- Hands on experience in implementing ISO 27001
- Hands on experience in AWS
- Knowledge of various security methodologies and technical security solutions (firewall and intrusion detection systems).
- Knowledge of the security threat landscape and the approach threat actors take to attacking a network (phishing, port scanning, web application attacks).
- Knowledge of network analysis and network/security applications.
- Desirable: Some experience as a Security/Network Administrator or equivalent in a Security Operations Centre environment .
- Desirable: Bachelor’s degree in a related field or equivalent experience and knowledge.
- Desirable: Experience working with SIEM systems.
Benefits
As well as working as part of an amazing, engaging and collaborative team, we offer our staff a wide range of benefits to motivate them to be the best they can be! Here's an overview of everything we offer right now!
You will receive:
- A competitive salary based on your experience and ability to perform in role
- 25 days annual leave (excluding bank holidays)
- 8% pension contribution
- Private health care via AXA
- Fantastic corporate discounts and mental wellbeing support via Perkbox, including a top of line EAP and free subscription to HeadSpace
- Salary sacrifice schemes as well as the opportunity to receive share options.
We have fantastic offices in Basingstoke and London (Midford Place) complete with a fully stocked fridge / snacks and catered lunches 2 times a week.
We also reward our teams with monthly socials, half day Fridays during the summer months of July and August, 3 extra days off during the Christmas holidays and a culture built on recognition, collaboration and success.