Info Sec Analyst

Develop, coordinate and maintain the delivery of an Information Security framework across the Capita Software Division, in line with Capita (Group & Division) Policies / Standards, industry best practice, client contractual requirements and the emergence of new regulations and technology.

Job title:

Job Description:

Primary Skills: Auditing, compliance, log reviews, security awareness, risk assessment.

• Support the Divisional Information Security Strategy;
• Support a governance framework in line with Capita Policy, industry best practice, client / contractual requirements, (such as ISO standards / PCI DSS / Cyber Essentials) and relevant legal and regulatory obligations;
• Create business-focused, practical Information Security solutions for the benefit of the Division, which are compliant with Capita and industry best practices;
• Increase awareness of Information Security and Data Privacy across the Division, assisting the Division with achieving a compliance target of >95% with Group Mandatory Training;
• Provide support to the Division and its functions to ensure the effective maintenance of Information Security and Data Privacy;
• Develop and maintain industry awareness and best practices, relating to legislation & regulations, emerging threats, areas of operation and technology, surrounding Information Security and Data Privacy; and compete in knowledge transfer activities;
• Provide guidance and support to enable the Divisional functions to comply with contractual requirements, maintain required certifications (ISO27001 / PCI DSS / Cyber Essentials / HMG Security Policy Framework) and compliance with Capita Policies and Standards;
• Offer advice and guidance on Information Security and Data Privacy, to employees at all levels, to safeguard the confidentiality, integrity and availability of client and business information;
• Support the Division in managing Information Security and Data Privacy risk, in accordance with Capita Risk Framework and contractual requirements;
• Conduct internal audits against ISO27001 and other appropriate standards;
• Facilitate the coordination and management of scheduled external audits and Group Internal Audit activities;
• Ensure the completion of monthly reporting requirements, as directed by the Division / Group;
• Provide guidance and support, with regards to any future Divisional Acquisitions;
• Aid with the development, production and management of Critical Asset Registers, Threat Assessments, Business Continuity / Disaster Recovery documentation, throughout area of responsibility;

Provide practical support and guidance surrounding the inclusion of risk management, security and privacy by design of Capita Software products and services.

Location:

,

Time Type:

Contract Type: