IT Security Analyst
Ancoats, Manchester, United Kingdom
NQC
As leaders in supply chain risk management solutions, we help organisations to achieve transparency, compliance and resilience with easy-to-implement technology.NQC is a successful and growing software company specialising in supply chain risk management platforms. We’re in the ‘Tech for Good’ space, providing online web platforms which are in use by some of the largest organisations across a number of industries including the UK Government and the Automotive industry.
Based in central Manchester, NQC offers a supportive working atmosphere within a diverse team of people. We work on a hybrid model and regularly meet up outside of the office for team socials and company events. This is an opportunity to contribute to globally recognised technology solutions used by major brands throughout the world and become part of an exciting long term plan for sustainability, and a better future.
About your new role
As part of our growth journey, we are looking for an experienced IT Security Analyst to join our IT Administration team. The successful candidate will work closely with other teams to ensure the security of our software products and infrastructure.
As an IT Security Analyst you will be required to undertake the following responsibilities as part of your day to day activities:
- Design, implement and monitor Information Security and Cyber security policies and processes
- Developing, leading and managing the end-to-end planning, communication, training, delivery, assessment and continuous improvement of a consistent business risk-based Information Security and Cyber Security approach, that aligns to and supports wider business and customer requirements
- Developing, managing and delivering Information Security projects from initiation to implementation with a continuous improvement and collaboration focus
- Leading and delivering operational Governance, Info Sec & Cyber Security aligned to industry Security practices and standards, contingency planning and incident response across the company, minimising incidents and adverse events, enabling safe, secure and compliant IT and business operations, compliant to ISO27001, Cyber Essentials and TISAX standards
- Building, managing and monitoring activity and routine reports, raising awareness and adherence across the IT directorate and wider business
- Representation on Customer Information Security groups
- Managing third party web application PEN testing suppliers
- Maintain, analyse, and monitor cybersecurity threats
- Conducting security and data protection assessments with internal business units and external third parties to ensure ongoing security and data protection requirements are met
- Attending client calls as required for security assurance purposes or other related areas
- Working with our commercial teams to complete Security and Data Protection assessments in a timely manner
- Managing security incident response and continuous monitoring of effectiveness of the mitigation actions and outcomes
- Providing regular reports and updates to the Board of Directors
Requirements
- Strong working knowledge of data privacy laws, information security and industry best practices and how they might impact a software business like ours
- Ability to prioritise tasks, problem solve, work under pressure, and be a business partner to the company, ensuring that we balance our compliance and security goals against commercial needs, giving consultative information advice and guidance as necessary
- Project management and presentation skills are key
- Strong eye for detail and documentation
- Strong communication and collaboration skills
- Ability to identify incident trends to elevate as required
- Demonstrable knowledge of conducting information audits
Benefits
- Competitive salary dependent on experience
- 25 days holiday (Increasing with service)
- Flexible hybrid working policy
- Health Cash Plan
- Private Company pension scheme
- 24/7 Access to a Virtual GP
- Life Assurance (4 x Salary after probation period)
- Regular company socials and events
- Perkbox - Diamond access - giving you access to treats, discounts on retail and leisure
- Employee Assistance Programme (mental health and stress support, counselling sessions)
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits Compliance Governance Incident response ISO 27001 Monitoring Pentesting Privacy Risk management TISAX
Perks/benefits: Competitive pay Flex hours Health care Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Officer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Architect jobs
- Open Information Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Analyst jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Application security-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Kubernetes-related jobs
- Open CI/CD-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open DevSecOps-related jobs