Find More Than 10K+
United Kingdom Jobs

You will be conducting risk analysis across critical systems, reviewing architectures against security standards and helping SEL to achieve compliance with internal policies across the group’s IT estate by carrying out audits and risk assessments to identify non-compliances with policy and best practice. Once found, you will design remediation plans, then raise and work with IT for implementation.

You will also be responsible for security event and incident monitoring, investigation, root cause analysis, identifying trends, planning and implementing remediation and future prevention activities both independently and where applicable, in conjunction with a Managed Security Operations Centre and other members of the Information Security team.

How will I spend my time in this role?

• Acting as the Security Incident Manager by leading investigations into potential information security breaches and coordinating the response with IT and end users where required and treating root cause;
• Conduct threat research into the current methods attackers are attempting to compromise IT services and define appropriate prevention methods if the resultant risk is deemed above company risk appetite;
• Continuing the enhancement and implementation of information security and data processing technical controls across the global IT estate;
• Auditing and reviewing existing and proposed controls as part of systems design documents for suitability and compliance with defined standards and best practice;
• Create plans to fix vulnerabilities;
• Develop and promote best security practices;
• Ensuring continued compliance across all office locations by planning and conducting regular audits of network security design and implementation;
• Working with IT to progress and close internal / external audit non-conformities;
• Assist members of the IT team plan and deploy technical security controls;
• Assist administration of security related IT services such as Microsoft Sentinel, Endpoint Manager and Azure Security Center.

What skills/experience do I need to be considered?

• A strong background in information security, analyzing, implementing, advising, and assisting deployment of solutions to match global security standards;
• The ability to understand all aspects of the security architecture and the impact it can have on businesses / systems;
• Holding related InfoSec certifications (Lead Auditor / Practitioner, CISM, CISSP, CRISC, AZ-500 etc);
• Experience in developing security best practice processes and controls;
• Very good understanding of the principles of risk assessment and risk treatment, including operational risk as well as compliance monitoring and reporting;
• Knowledge of leading and executing continuous improvement within business operations;
• Evidence of leading and developing innovative and effective solutions to a range of vulnerabilities and security non-conformities;
• Knowledge of relevant Information Security Control Frameworks such as ISO 27k and CIS.

Who are we?

The future of energy is digitised, decarbonised and localised. At Smartest Energy, we need revolutionary thinkers to help our customers make the most of this new landscape, thinking differently to find smart solutions to complex problems.

Formed in 2001, we’re an agile business driven by entrepreneurial thinking. As a subsidiary of the Marubeni Corporation, we also have strong investment and infrastructure behind us. We have three offices in the UK, one in the US and another in Australia. Further expansion is planned for 2022 and beyond which means global career opportunities for you, with plenty of potential to explore new markets.

Flexibility is vital to success in our business and many of our staff work flexibly in many different ways, including part-time, compressed hours, remotely or a mix of remote/office. Please talk to us about what flexibility means to you and don’t let anything stop you from applying.

When you join our Team, you will have the opportunity to contribute and make an impact every single day.

What else do we offer?

• The opportunity to work from anywhere in the world for up to 30 days a year;
• A genuine commitment to smarter working – we recognise your work/life balance matters;
• Paid time off to volunteer in your community;
• Excellent benefits package including private medical insurance/dental cover and non-contributory pension from month three;

Diversity

Celebrating our inclusive and diverse culture is core to what we do. We value everybody irrespective of background, disability, religion, gender identity, sexuality or ethnicity.

We know that for our business to thrive we need diverse talent with a range of backgrounds, skills and capabilities in each of the countries in which we operate. We view diversity as one of the key enablers that helps our business to grow.

Check out all our benefits here

Check out all our current open positions

Our privacy policy is here