Information Security Analyst

An exciting new opportunity has arisen in the Linnaeus Group for an Information Security Analyst. Working for one of the UK's leading and rapidly growing veterinary groups, we are looking to expand our team. This role will assist the Head of Information Security in maturing the capability of the security environment which is aligned with the needs of the business. The position is fundamental for Linnaeus, as it will help them to operate as securely as possible and ensure that the right governance, processes and cyber tooling are in place. Main purpose & goals

• Identify and action security incidents. Utilising tools such as Crowdstrike, Intune, DLP policies etc.
• Work with stakeholders to remediate vulnerabilities across the technology landscape.
• Work with stakeholders to manage ongoing activity such as patch/fixes and produce patch status reports.
• Aid with the completion ofVendor Risk Management to ensure suppler due diligence and risk assessments/reporting are completed and data privacy/PIA compliance.
• Play a key role in the GDPR workgroup at Linnaeus.
• Active participate in project activities and represent the Information Security Team. Aid the team in progressing the NIST score through project work, through to assessment.
• Conduct internal audits and work with the identified stakeholders to develop and implement recommendations for improvement.
• Providetimely technical advice to cross-functional teams on all InfoSec and Data Privacy matters.
  
  Recent experience of working in an Information Security Team
Maintaining security policies and documentation Risk assessments and reports Housekeeping on security logs Azure/Office 365 Website vulnerability scanning, understanding risks and remediation activities Working with legal, audit and compliance stakeholders during audits Desirable Involvement in information security training programs Experience working in healthcare or pet care or the services industry Experience with the NIST framework Knowledge Essential Global standards e.g. NIST, ISO 27001, ISO 27002, PCI DSS, GDPR Office 365 Security & Compliance toolset Threat management Firewall principles PCI DSS compliance Qualifications Certified in Cybersecurity (CC) or equivalent. Systems Security Certified Practitioner (SSCP), Certified Cloud Security Professional (CCSP)- Desirable