Junior Information Security Analyst

We are working with a leading FinTech company who are seeking a Junior Information Security Analyst to join their team. This role is crucial in ensuring the security and integrity of information systems and data. The successful candidate will be responsible for implementing and maintaining security measures to protect organisational assets from cyber threats and ensuring compliance with industry standards.

Key Responsibilities

1. Assist in the planning and implementation of security controls and testing to ISO27001 standards.
2. Perform business impact analyses (BIA) across key technology processes, systems, and facilities, identifying gaps in critical information gathered and recorded.
3. Communicate significant changes in Business Continuity plans to the Information Security (IS) Manager.
4. Support the IS Manager in Disaster Recovery (DR) planning, ensuring that alternate facilities are provisioned and ready in the event of a disaster.
5. Respond to customer security questionnaires to support third-party assurance obligations.
6. Work with business units to ensure Business Continuity Plans are produced and maintained consistently.
7. Provide support and guidance to staff undertaking security awareness training, tracking completion and managing license levels.
8. Respond to security incidents.

In order to be successful in the role, candidates ideally need:

1. Understanding of Information Security methodologies, standards, and technologies, including ISO27001.
2. Previous experience in an Information Security or Enterprise Risk role.
3. Aware of Business Continuity and IT standards, policies, and frameworks, including ISO22301/BCMS.
4. Business Continuity Management knowledge with proven experience in this area.
5. Knowledge of IT with an understanding of system architecture interdependencies, enabling effective communication with IT personnel.
6. Strong documentation, analytical, and presentation skills.

Desirable Knowledge, Skills, and Experience

1. Qualifications such as CISA, CISM, CEH, or ISO27001 Lead Implementer/Auditor.
2. Experience engaging with senior management and managing relationships.
3. Previous experience handling Information Security incidents.

Benefits

This role offers a competitive salary based on skills and experience, along with a generous benefits package, including:

1. Annual performance-related bonus.
2. 11% non-contributory pension.
3. Excellent holiday entitlement.
4. Critical illness cover.
5. Private medical insurance.
6. Group life cover (4x annual salary).
7. A flexible benefits package, allowing choice from options such as additional holidays, bicycle leasing scheme, sports club membership, travel passes, and more.

Please note: you are required to be in the Edinburgh office twice a week, so only local to central Scotland should apply.