Information Security Risk Analyst

Job Description:

Our client, a financial services firm in Edinburgh, is recruiting for an Information Security Risk Analyst on a 12 month fixed term contract basis.

If you have previous information security risk management experience and are looking to join a global business, this could be an excellent opportunity for you!

Please note that the role holder will be required in the Edinburgh office 3 days per week.

• Previous Information Security Risk Management experience


• Working knowledge of security frameworks/standards e.g.
  
  ISO 27001, HMG Cyber Essentials or NIST Cybersecurity Framework


• Certified in Risk and Information Systems Control (CRISC) or other risk management certification


• Excellent communication and analytical skills

• Ensure security policies, processes, and procedures are thorough


• Ensure that security controls are sufficient to safeguard sensitive information systems


• Assist in detecting information security breaches or tracing the origin of unauthorised access


• Recommend defensive measures, including firewalls, security software, and data encryption


• Document and coordinate vulnerability management efforts and monitor the resolution of risks related to critical or sensitive information, systems, services, and processes


• Chair Technology Risk Management meetings, engage stakeholders, assign and track actions to remediate identified security risks


• Conduct security due diligence for all critical suppliers


• Carry out risk assessments and document findings, including potential impacts and statistical probability

• Hybrid working model

Core-Asset Consulting is an equal opportunities recruiter and we welcome applications from everyone irrespective of age, disability, gender, gender identity or expression, race, colour, ethnic or national origin, sexual orientation, religion or belief, marital/civil partner status or pregnancy.

Job reference: 15795

To apply for this vacancy applicants must be eligible to work in the UK in accordance with the Immigration, Asylum and Nationality Act 2006.

At Core-Asset, we're committed to protecting and respecting your privacy.

Our privacy statement explains when and why we collect personal information about people who engage with our services, how we use it, the conditions under which we may disclose it to others, and how we keep it secure.

We may change this policy from time to time, so please check this policy occasionally to ensure that you're happy with any changes.

By engaging with us (either by applying for a job we're advertising, registering through our website, or getting in touch with our business) you're agreeing to be bound by this policy.

Core-Asset Consulting is committed to protecting the privacy of our candidates, clients and website users.

For further information, please refer to our full Privacy Statement available on our website http://www.core-asset.co.uk/about-core-asset/privacy-statement

Core-Asset Consulting offers specialist recruitment services to asset management, accounting & finance, asset servicing, legal and the wider financial services sector in Scotland.

INDCAS