IT Security Risk and Compliance Jr. Analyst

Contract Type
This position is archived.
This position is archived.
Job description

The Jr. Analyst will be responsible for the participating in varying security initiatives. This individual will work with Global GISO management to document process improvement and to ensure that Information Security goals are met and exceeded. The individual is responsible for GISO inter-region BAU activities and mission specific assignments as needed. The Jr. Analyst will ideally possess a level of Information Security understanding and a proficiency in IT terminology. The GISO Operations Coordinator will collaborate with IT management and service line management to discuss identified risks and mitigating activities.

Key Responsibilities:

  • Participate vendor security assessments to ensure vendors meet internal information security requirements and help monitor them
  • Participate in client security assessments and audits ensuring that internal information security requirements satisfy client needs.
  • Help setting up and run quarterly phishing campaigns and security initiatives
  • Ensure deadlines, timelines, and set processes are manged and met through the year.
  • Work with Regional Security Leads to ensure that cross region activities are followed through and completed
  • Collaborate with Service Line organizations and Legal in reviewing specialized training needs and requirements are documented.
  • Work to ensure that all GISO penetration tests are actioned on and remediation plans are enabled
  • Work with and manage security service desk L4 concerns. Initiate and shepherd swift remediation action to resolve issues.
  • Capture information risk metrics into a central repository, analyze the metrics and ensure they are meaningful and tell the true story of the GISO operations
  • Determine, measure, and agree on actions to ensure that the C&W GISO is looked up as a world leader and innovative in its methods

Qualifications (education) required for filling the position:

  • Degree in computer science, information systems, engineering or related field
  • 1-2 years of experience in one or more domains of information security such as vendor risk management, security governance, security operations etc.

Other professional qualifications required for filling the position:

  • Experience and thorough understanding of IT risk and compliance standards and industry best practice frameworks such as ISO 27001 / 2, NIST CSF, NIST SP800-53, CCSK
  • Excellent task management and time management skills.
  • Excellent communication skills (verbal and written).
  • Ability to collaborate with business and IT partners in task management and project coordination.
  • Large multi-national company experience preferred
  • Strong interpersonal skills and ability to work cross-functionally and across divisions with others.
  • Strong teambuilding skills including promoting cooperation and good working relationships among peers and team members, remaining positive and supportive during change, and building rapport and trust with IT Risk stakeholders and other business partners.
  • Strong problem solving and program execution skills.
  • Team player
  • Competent in Microsoft Office Suite

Company offers real challenges, a lot of work, an above average compensation and benefits package, good career development possibilities in an international environment, they can offer fun and fully contribute to the success of young, dynamic and competent team members.

Other notes
For more related job opportunities visit
This position is archived.
This position is archived.