Jobs

INFORMATION SECURITY ANALYST

developer

Employer: Zonal Retail Data Systems Limited

Position:  Information Security Analyst

Salary:  £35,000.00-£40,000.00 per year

Job Types: Full-time, Fixed term contract

Contract length: 12 months

Work Location: Remote

FULL JOB DESCRIPTION

Imagine what it would be like to work for the UK’s leading tech developer to the UK’s biggest and best pubs and restaurants. From EPoS to loyalty, CRM to table bookings, stock control, recipe management, and BI Reporting giving business critical insights – our tech includes everything an operator needs to run their hospitality business.

WHAT YOU WILL DO
We are currently recruiting for an Information Security Analyst for a period of 12 months Maternity cover to work within Zonal’s Security Team; someone who shares our passion for driving security best practices into our business operations and our products and services and striving for continual improvement.

Zonal is an ISO 27001-certified organization adhering to security best practices and significant investments have been made, not only in the team but also in additional technologies that better enable us as a business to monitor and manage risks and ensure that our perimeter is secured in consideration of an ever-evolving cyber security landscape.

By design, Zonal’s Security Team works alongside all departments within the business, engaging and liaising with multiple stakeholders, both internally and externally. We pride ourselves on our ability as a team to engage and educate stakeholders, working with individuals to drive change and strive for better security practices and controls.

With the investments in innovative technologies advancing our abilities to identify areas for improvement, Zonal’s Security Team are moving towards data-driven decision-making, using a number of data feeds, monitoring tools, penetration test results, etc. to drive areas of improvement and raise the ‘security’ bar. The role of the Senior Security Analyst is pivotal in supporting this next key milestone for the Security Team in defining how data is analyzed and utilized to drive change.

MAIN DUTIES & RESPONSIBILITIES


Reporting to the Head of Information Security – Governance & Compliance, the Senior Security Analyst will be responsible for:

  • Owning, defining, and scoping an analytics strategy for the Security Team to enable and facilitate a data-driven decision-making approach.
  • Manipulating and analyzing data and information feeds from multiple sources to drive the security improvement program and KPIs across the business.
  • Responsible for ISO 27001 internal auditing across the business including managing the internal audit schedule, arranging, and conducting internal audits
  • Responsible for creating and managing our security campaigns using attack simulators and developing payloads to improve sophistication.
  • Be the security point of contact for managing Zonal’s information asset registers
  • Security’s presence on ‘The Local,’ communicating security newsletters, blog posts, updates, features, etc. to the business to provide transparency across improvement initiatives and ensuring the relevant information security policies, procedures, certificates, and guidance documentation are readily available.
  • Improving automation across security tools and applications to introduce greater efficiencies and effectiveness.
  • Implementing and managing Zonal’s information security and data protection training platform.
  • Supporting users with security tooling providing guidance on usage and best practices to drive uptake.
  • Providing support with security and compliance-related responses to third-party questionnaires and requests for information (RFIs).
  • Supporting the activities required to maintain ISO 27001 certification and the Information Security Management System (ISMS) (as required).
  • Working with internal stakeholders to drive continual improvements in security.

This role is ideal for someone with experience leading Internal Audits across technology and support function teams. The role would suit an individual with previous experience in data analytics, with a passion for information security and technology, and for raising the security bar within the hospitality industry.

WHO YOU ARE

  • You will have a strong desire to further your knowledge and experience within information security and have a keen interest in security and emerging threats and vulnerabilities.
  • You will be a self-motivated, logical-thinking problem solver who is flexible and adaptive to a very busy work environment.
  • You will have an inquisitive nature paired with a positive attitude and an eagerness to learn and progress.
  • You will be highly organized with a keen eye for detail and be able to manage your time and work effectively.
  • You will have previous and demonstrable experience in data analytics using data to drive decision-making.
  • You will have previous and demonstrable experience in internal auditing using the ISO27001 framework
  • You will have excellent presentation skills and be a strong communicator.
  • You will have a strong understanding of information security and technical concepts; the successful candidate will possess a unique blend of business and technical savvy.
  • You will have a hands-on approach to the role with the ability to contribute to security improvement programs whilst taking personal responsibility for their success.
  • You will be flexible to change direction and manage conflicting demands.
  • Ideally with a degree in Computer Science or Security; however, industry experience and evidence of achievements are more desirable.

OTHER DESIRABLE SKILLS INCLUDE:

  • A basic understanding of the following is beneficial:
  • OWASP Top 10
  • NIST
  • PCI DSS
  • UK Cyber Essentials Plus
  • ISO27017
  • Experience working with MS Defender
  • Experience working with MS Purview
  • Experience with PowerBI
  • Able to work independently but also as part of a team.

APPLICATION PROCESS

If you’re interested in this role, check out more information on the Official website and apply