Infosec Analyst
Cambridge, United Kingdom
Gearset
Gearset is the only platform you need for unparalleled deployment success, continuous delivery, automated testing and backups.This is a fantastic opportunity to progress your career in security within the tech sector. This role will provide you with exposure to several key areas including information security, audits and relevant project work. As the second hire within the team, there’ll be lots of opportunity to progress within the role and specialise within a certain area of the business in the future.
What’s the opportunity for a Infosec Analyst at Gearset?
- Build on your prior experience from an information security role, within a technology company, to support our ambitious company growth plans.
- Ownership over keeping our security documentation accurate and up to date, such as policies, procedures, and support documentation across our information security programs.
- Own commercial relationships and support teams in sometimes complex information security negotiations, while making sure we respond accurately and within given timescales.
- Be responsible for maintaining our current ISO 27001 compliance and certification through continuous improvement activities, as well as supporting preparation for internal and external audits.
- Gain experience in the implementation and ownership of additional compliance based projects as we increase the international regulation and standards we comply with.
- Help keep us efficient to work with by spotting common blockages or queries in deals and recommending ways that we might standardise and improve documentation or processes.
What you’ll achieve
- Become a technical expert on the company and our products to streamline customer onboarding, and security reviews.
- Own reviewing and responding to our customer security requests.
- Ownership of compliance and reporting to the international information security standard ISO 27001, to ensure Gearset retains our certification and continues to provide the highest level of protection to our customers’ data.
- Work as part of the compliance project team when implementing new regulations or standards such as HIPAA, fedRAMP etc.
- Have the opportunity to get certified to international standards on Information Security, Cyber Security, etc.
About you
- Have experience in an information security role, within a technology company and hold either a ISO 27001 Lead Implementer or Lead Auditor certificate.
- In-depth knowledge of ISO 27001 standards & proven experience in implementing ISO 27001 and maintaining the certification
- Great technical knowledge of AWS Cloud infrastructure, and application security
- A technical predisposition, and the desire to learn
- Excellent communication skills, with attention to detail and a passion for always delivering a great customer experience
- The ability to react to the needs of a rapidly growing company and comfortable working in an ever changing environment
Great to haves
- A degree in Computer Science, Information Security, Cybersecurity, or a closely related discipline
- A recognised Information Security qualification such as CISSP, CompTIA Security+ etc
- Past exposure to other regulations or frameworks such as NIST, HIPAA, fedRAMP
- Knowledge of DevOps and DevSecOps
- Knowledge of data protection laws such as GDPR, CCPA
Salary and benefits (the stuff you’d expect!)
- Salary up to £45-55k per annum (depending on experience)
- This is a full time opportunity, working Monday to Friday within our Cambridge office with the option of flexible home working (for most of us that looks like 2-3 days a week in the office)
- Generous personal development budget for courses, conferences, or whatever is useful to your professional development in the role of up to £1500 per year
- Top end hardware provided
- Free lunch in the office
- 25 days holiday plus bank holidays (with the option to buy an extra 5 each year)
- Company Pension Plan (matching up to 5%)
- Bupa health care
- Life Insurance & critical illness cover
- Discounted gym membership, as well as a range of health and wellness benefits
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security Audits AWS CCPA CISSP Cloud Compliance CompTIA Computer Science DevOps DevSecOps FedRAMP GDPR HIPAA ISO 27001 NIST
Perks/benefits: Career development Conferences Fitness / gym Flex hours Health care Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Principal Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Information Security Officer jobs
- Open Senior Cyber Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Information Security Specialist jobs
- Open Product Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Chief Information Security Officer jobs
- Open Cyber Security Specialist jobs
- Open Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Consultant jobs
- Open Cybersecurity Editor jobs
- Open IT Security Engineer jobs
- Open IT Security Analyst jobs
- Open Senior Penetration Tester jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Operations Analyst jobs
- Open Information Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Risk assessment-related jobs
- Open Network security-related jobs
- Open CISM-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open ISO 27001-related jobs
- Open Threat intelligence-related jobs
- Open Analytics-related jobs
- Open Vulnerability management-related jobs
- Open IAM-related jobs
- Open CISA-related jobs
- Open Security assessment-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open APIs-related jobs
- Open Forensics-related jobs
- Open Java-related jobs
- Open DoD-related jobs
- Open EDR-related jobs
- Open DevOps-related jobs
- Open SaaS-related jobs
- Open Kubernetes-related jobs
- Open CEH-related jobs