Infosec Analyst

Cambridge, United Kingdom

Gearset

Gearset is the only platform you need for unparalleled deployment success, continuous delivery, automated testing and backups.

View company page

We’re proud to be trusted by some of the largest companies in the world to handle their Salesforce DevOps. Underpinning that trust is a commitment to protect their data through our best-of-breed approach to security and compliance, and this is only getting more important as we grow our customer base in increasingly regulated sectors. 
This is a fantastic opportunity to progress your career in security within the tech sector. This role will provide you with exposure to several key areas including information security, audits and relevant project work. As the second hire within the team, there’ll be lots of opportunity to progress within the role and specialise within a certain area of the business in the future.

What’s the opportunity for a Infosec Analyst at Gearset?

  • Build on your prior experience from an information security role, within a technology company, to support our ambitious company growth plans. 
  • Ownership over keeping our security documentation accurate and up to date, such as policies, procedures, and support documentation across our information security programs.
  • Own commercial relationships and support teams in sometimes complex information security negotiations, while making sure we respond accurately and within given timescales.
  • Be responsible for maintaining our current ISO 27001 compliance and certification through continuous improvement activities, as well as supporting preparation for internal and external audits. 
  • Gain experience in the implementation and ownership of additional compliance based projects as we increase the international regulation and standards we comply with.
  • Help keep us efficient to work with by spotting common blockages or queries in deals and recommending ways that we might standardise and improve documentation or processes. 

What you’ll achieve

  • Become a technical expert on the company and our products to streamline customer onboarding, and security reviews.
  • Own reviewing and responding to our customer security requests.
  • Ownership of compliance and reporting to the international information security standard ISO 27001, to ensure Gearset retains our certification and continues to provide the highest level of protection to our customers’ data.
  • Work as part of the compliance project team when implementing new regulations or standards such as HIPAA, fedRAMP etc.
  • Have the opportunity to get certified to international standards on Information Security, Cyber Security, etc.

About you

  • Have experience in an information security role, within a technology company and hold either a ISO 27001 Lead Implementer or Lead Auditor certificate.
  • ​​In-depth knowledge of ISO 27001 standards & proven experience in implementing ISO 27001 and maintaining the certification
  • Great technical knowledge of AWS Cloud infrastructure, and application security
  • A technical predisposition, and the desire to learn
  • Excellent communication skills, with attention to detail and a passion for always delivering a great customer experience
  • The ability to react to the needs of a rapidly growing company and comfortable working in an ever changing environment

Great to haves

  • A degree in Computer Science, Information Security, Cybersecurity, or a closely related discipline
  • A recognised Information Security qualification such as CISSP, CompTIA Security+ etc
  • Past exposure to other regulations or frameworks such as NIST, HIPAA, fedRAMP 
  • Knowledge of DevOps and DevSecOps
  • Knowledge of data protection laws such as GDPR, CCPA

Salary and benefits (the stuff you’d expect!)

  • Salary up to £45-55k per annum (depending on experience)
  • This is a full time opportunity, working Monday to Friday within our Cambridge office with the option of flexible home working (for most of us that looks like 2-3 days a week in the office)
  • Generous personal development budget for courses, conferences, or whatever is useful to your professional development in the role of up to £1500 per year
  • Top end hardware provided
  • Free lunch in the office
  • 25 days holiday plus bank holidays (with the option to buy an extra 5 each year)
  • Company Pension Plan (matching up to 5%)
  • Bupa health care
  • Life Insurance & critical illness cover
  • Discounted gym membership, as well as a range of health and wellness benefits
Apply now Apply later
  • Share this job via
  • or

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: Application security Audits AWS CCPA CISSP Cloud Compliance CompTIA Computer Science DevOps DevSecOps FedRAMP GDPR HIPAA ISO 27001 NIST

Perks/benefits: Career development Conferences Fitness / gym Flex hours Health care Wellness

Region: Europe
Country: United Kingdom
Job stats:  15  3  0
Category: Analyst Jobs

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.