Skip to main content

This job has expired

IT & Security Compliance Analyst

Employer
Electus Recruitment
Location
Christchurch
Salary
£42000 per annum
Closing date
29 Mar 2023

View more

Clearance Level
SC
Sector
Aerospace, Cyber Security, Defence
Job Type
Permanent
IT & Security Compliance Analyst
Job Description

The IT & Security Compliance Analyst directly reports administratively to the VP IT & Security. The role is responsible for providing clear and continuous insight and awareness of the effectiveness of the Security Management System (SMS) and the related ‘Information Security Management System’ (ISMS), and for providing recommendations which support Continuous Improvement of both systems. The role is responsible for preparing and maintaining IT & Security policy framework, audit and inspection activity to meet contractual and regulatory requirements, for conducting internal inspections to prepare the company for notified external audits and inspections, and for guiding the delivery of Quality Management and Compliance across IT & Security.

Key Responsibilities
Compliance and Audit – Information Security
  • Lead the development, documentation and maintenance of the Information Security Management System (ISMS) to ensure and evidence that the business is able to meet the requirements of ISO 27001 and associated regulatory and legal security obligations;
  • Create and manage the ISMS risk-based Internal Audit schedule;
  • Lead the development, measurement and reporting of Information Security KPIs;
  • Perform ISMS Internal Audits in accordance with the Annual Security Internal Audit Schedule: ensure compliance monitoring, testing and review of the Information Security Management System;
  • Highlight non-conformance and non-compliance resulting from audits, ensuring visibility, and tracking of risks, issues and mitigations.
  • Management of the related policy framework.
Compliance and Audit – All Security functions
  • Advise on the creation, development, documentation and maintenance of the Security Management System (SMS) to ensure and evidence that the business is able to meet its wider contractual, regulatory and legal security obligations;
  • Create and manage a risk-based Internal Audit schedule, to encompass List X compliance and audit requirements;
  • Lead the development, measurement and reporting of general Security KPIs;
  • Perform Internal Audits of Security controls and measures in accordance with the Annual Security Internal Audit Schedule: ensure compliance monitoring, testing and review of the SMS;
  • Highlight non-conformance and non-compliance resulting from audits, ensuring visibility and tracking of risks, issues and mitigations.
Quality and Assurance
  • Manage the schedule and support the coordination and conduct of Security Governance activities, including a monthly and quarterly Security Working Group chaired by Head of Safety, Security & Compliance;
  • Monitor statutory, regulatory and international standards changes in order to update relevant policies and procedures;
  • Develop and maintain a register of Enterprise Security Risks: represent Security for Enterprise Risk reviews;
  • Advise the business on the application of security rules and obligations and ensure appropriate systems and controls are in place to manage associated risks in order to safeguard the business from breaching its statutory, regulatory and contractual obligations;
  • Guide Security team practices to ensure adherence to the Quality Management System.
Special Conditions
  • Provide support for ad-hoc/out of hours work during urgent/unforeseen business requirements;
  • Conduct any other reasonable duties, which may requested that fall within the scope/capability of the incumbent;
  • Undertake domestic/International travel as required.
Core Competencies
  • Knowledge/Experience
  • Knowledge of best practice compliance and governance frameworks;
  • Good understanding of internal controls;
  • Working knowledge of internal auditing standards and procedures;
  • Experience in monitoring compliance and conducting quality internal audits;
  • Experience in developing and implementing compliance frameworks and internal controls;
  • Experience in reporting, data analysis and in using data analysis tools;
  • Experience in assurance/compliance//audit/risk and control function/role;
  • Experience with the delivery of internal controls and governance.
Skills
  • Good communication skills, both written and oral;
  • Process mindset, able to easily follow and understand complex processes;
  • High attention to detail and excellent analytical skills;
  • Ability to communicate effectively at all levels within the organisation;
  • Self-starter with strong sense of responsibility;
  • Flexibility to adapt to an ever evolving and dynamic work environment;
  • Ability to communicate complex topics in efficient and effective manner;
  • Stakeholder management and leadership;
  • Negotiation/influencing skills;
  • Possess and maintain high levels of integrity and work ethic.
Education/qualifications
  • Educated to Degree Level;
  • Qualified Internal Auditor/Lead Auditor ISO 27001.
  • Key Measures
  • Objectives set during annual Personal Development Review (PDR);
  • Effective management of the Annual Security Internal Audit Schedule;
  • Effective management of the audit non-conformances and non-compliances, i.e. effective closures with no repeat findings;
  • Effective monitoring of the statutory, regulatory and international standards changes, i.e. no overdue implementation of requirements.
Overview:
Position - IT & Security Compliance Analyst – Permanent
Salary - £42k
Location – Christchurch

Keywords: Internal Auditor/Lead Auditor ISO 27001, ISMS risk-based Internal Audit schedule, governance frameworks.

Only apply for this role if you currently hold the specific Government Security Clearance or are eligible for Government Security Clearance.

Due to the nature of work undertaken at our client's site, incumbents of these positions are required to meet special nationality rules and therefore these vacancies are only open to sole British Citizens. Applicants who meet this criteria will also be required to undergo security clearance vetting, if not already security cleared to a minimum SC level.

Electus Recruitment Solutions provides specialist engineering and technical recruitment solutions to a number of high technology industries. We thank you for your interest in this vacancy. If you don't hear from us within 7 working days please presume your application has been unsuccessful on this occasion. You are of course free to resubmit your CV/details in the future and we shall assess your suitability at that time.

This is a Permanent Role

Get job alerts

Create a job alert and receive personalised job recommendations straight to your inbox.

Create alert