Job description
Vendor Security Analyst
Job details
Job description
London (Hybrid)
12-Month FTC
£55,000 - £65,000 + Excellent Benefits
Digital Waffle is working in partnership with a provider of software development, data analysis, and marketing. This is a fantastic opportunity for an enthusiastic Vendor Security Analyst.
Job Role
The Vendor Security Analyst will support our Information Security capabilities to ensure the firm operates in compliance with regulatory, client, and industry requirements for cybersecurity. In this role, you will be responsible for monitoring, managing, and closing compliance issues while ensuring internal systems meet security control standards.
- Conduct access certification audits and identifies non-compliant permissions
- Evaluate firm compliance with key security policies and ISO requirements, document variations for remediation
- Generate actionable metrics for leadership review
- Identify and support the creation of policies and procedures to improve process compliance
- Update security risk register and findings, and manage updates as appropriate
- Maintain internal team documentation
- Follow up on questions, problems, or suggestions and respond to employee inquiries with the appropriate level of urgency
Requirements What do you need?
- 2+ years experience within the field of cybersecurity and information risk management or internal controls testing.
- Experience evaluating controls over IT processes.
- Familiarity with security control frameworks, such as ISO27001, NIST CSF, NIST 800-171.
- Familiarity with various security compliance tools, such as SailPoint, Tenable, Microsoft Security Suite.
- Keen attention to detail and accuracy in order to analyze documents.
- Broad knowledge of risk management, access governance, and third-party risk.