Find More Than 10K+
United Kingdom Jobs

Your role at a glance

You'll play a vital role in supporting security assurance and governance activities across our growing Group Functions application estate. This role works closely with other team members to coordinate security testing activities, monitor security events and govern access and supplier security controls, identifying any potential gaps and identifying remediation options to reduce risk/meet defined business objectives.

If you have a passion for Information or Cyber Security and are looking for your first role in industry, then this is the ideal opportunity for you!

We will consider applications from all over the UK however there may be an expectation to travel into one of our main offices in Hove. We are also open to flexible working arrangements - job share etc.

What you'll be doing

• Access Control – initiating access control reviews through new tooling and requesting changes on Group Functions systems to keep access rights up to date
• Security Testing – scoping and scheduling of security testing (using third party specialists) of Group Functions systems, reviewing and advising on fixes required and tracking remediation activities to get an overall view of security risks to Group Functions
• Supplier Assurance – supporting supplier due diligence activities (facilitated by Group Technology Security Team). Working with the IT Risk, Audit and Compliance Manager to conduct operational assurance checks on key suppliers to ensure we are in line with regulations and business policy
• Security Monitoring – creating application use cases, co-ordinating application changes to produce relevant logs, assisting in tuning events from output and investigating alerts, MI reporting to maintain our security event visibility.
• Information Security Assurance – supporting the documentation of a control regime and agreeing, then performing, the regular checks to ensure controls remain effective. Working with IT Risk, Audit and Compliance Manager to review IT controls attestations and evidence. Working with IT teams to ensure appropriate coverage of IT controls and to ensure alignment with the central framework to reduce risk
• Management Information Reporting – producing reports for consumption by various governance bodies (Group Functions senior leaders, Technology Risk Committee) and ensuring metrics remain useful to critically assess security controls and identify improvements to manage risk

What we're looking for

• You’ll have a keen interest in cyber/information security and a basic understanding of the types of security threats and vulnerabilities that an organisation like ours can be exposed to
• Good interpersonal and communication skills with the ability to work with colleagues across all seniority levels
• Strong analytical skills
• Structured approach to problem solving
• Prior work experience in information security would be great but not essential. Some understanding of IT matters such as networks and application development would be great!

Benefits

If you join us, you’ll get access to some great benefits, including private medical insurance, at least 25 days holiday (excluding bank holidays), a generous pension scheme, life assurance, and Income Protection. You can participate in our electric car scheme, which offers employees the option to hire a brand new electric car through tax efficient salary sacrifice. We’re also proud to offer competitive family leave.

You’ll have the opportunity to participate in our annual, performance-related bonus plan and valuable share schemes. And then there are the many discounts we offer that you can take advantage of – both for our own products and at a range of high street stores and online offerings.