IT Compliance Analyst

Company Description

Informa is a leading international events, intelligence and scholarly research group.

We’re the specialist’s specialist. Through hundreds of powerful brands, we work with businesses and professionals in specialist markets, providing the connections, intelligence and opportunities that help customers grow, do business, make breakthroughs and take better informed decisions.

Informa is listed on London Stock Exchange and a member of FTSE 100, with over 11,000 colleagues working in more than 30 countries.

Informa’s divisions include:

Informa Connect, a specialist in content-driven events and digital communities that allow professionals to meet, connect, learn and share knowledge.

Informa Markets, creating platforms for international markets to trade, innovate and grow. Through over 500 leading brands, our exhibitions, specialist digital content and data solutions allow customers operating in specialist markets to meet and trade, and for their businesses and markets to thrive. 

Informa Tech, a division bringing specialism in technology. We aim to inspire the global technology community to design, build and run a better digital world through research, media, training and events that inform, educate and connect businesses and professionals working in technology.

Taylor & Francis, specialist in scholarly research and in helping academic and research communities make new breakthroughs.  We commission, curate, produce and publish scholarly research and reference-led content in specialist subject areas, helping to advance research and enabling knowledge to be discovered and shared.

Global Support is Informa's fifth division, with major hubs in the United Kingdom, United States, Hong Kong and Singapore as well as several smaller locations.  As the team behind the teams, Global Support colleagues provide shared, efficient business services and function-specific expertise to each of Informa's operating divisions, enabling our commercial teams to focus on their markets and customers.

Job Description

The IT Compliance Analyst will support and lead initiatives and activities to continually monitor and improve the security posture of Informa.  They will be responsible for assessing Group and Divisional platforms, applications and processes through a defined assurance framework that aligns with the Group control and reporting frameworks.

They will be expected to act as a subject matter expert to all Divisions and help colleagues assess their security posture for the benefit of exposing risks and issues, assessing maturity and providing on-going assurance.  They will require excellent communication skills and the ability to summarise complex situations to a non-technical audience.

The IT Compliance Analyst will report directly to the Head of IT Compliance and will be part of the Informa Group Information Security Team and Technology Solutions & Services.

Key Responsibilities
 

The IT Compliance Analyst is expected to assume the following key responsibilities plus any other reasonable duties as required:

• Support IT security control reviews into Informa’s key digital products, services and platforms to a high technical standard and following the team’s defined risk-based approach.
• Agree actions plans where areas of non-compliance are identified with senior stakeholders in a professional manner.  Monitor, regularly follow-up and report upon the implementation of these findings, encouraging an environment of compliance.
• Support and develop compliance initiatives to improve control maturity in the organisation.
• Support and supply metrics and KPIs to aid the monitoring and tracking of the security assurance engagements.
• Support within Governance, Risk and Compliance (GRC) initiatives within the wider Information Security Management team where required.
• Provide support for Group IT assurance tasks, including both internal and external audits in the Group Technology area.

Qualifications

• Minimum 2 years’ experience in an IT security or IT assurance role
• CISA or equivalent desirable
• BSc in Computer Science, Information Security, or a related field desirable
• Working knowledge of the NIST cybersecurity framework 2.0 would be an advantage
• Currently holding or working towards relevant security certifications would be an advantage

Additional Information

Employee experience is very important to us at Informa. On top of joining a supportive, diverse and ambitious team that welcomes all types of candidates, we make every effort to offer flexible working patterns and prioritise promotion opportunities for internal candidates. Our benefits include:  

• A tailored learning and development plan and access to online material to support your career development    
• 25 days annual leave, 4 days for volunteering and a day off for your birthday!   
• Competitive Benefits package including pension, healthcare and a range of wellbeing benefits 
• Share-Match options so you can become a shareholder    
• Regular social events and networking opportunities  
• Flexible working environment
• Central office in Blackfriars, close to mainline and Underground stations, an onsite gym and restaurant, and a variety of amenities nearby

We know that sometimes the 'perfect candidate' doesn't exist, and that people can be put off applying for a job if they don't fit all the requirements. If you're excited about working for us and have most of the skills or experience we're looking for, please go ahead and apply. You could be just what we need! We believe strongly in the value of diversity and creating supportive, inclusive environments where our colleagues can succeed.  As such, Informa is proud to be an Equal Opportunity Employer.  We do not discriminate on the basis of race, colour, ancestry, national origin, religion, or religious creed, mental or physical disability, medical condition, genetic information, sex (including pregnancy, childbirth, and related medical conditions), sexual orientation, gender identity, gender expression, age, marital status, citizenship, or other protected characteristics under local law.    This role may also be available on a flexible working or part time basis – please ask the Talent Acquisition team for more information