Full Description

We're proud of our professional approach to new challenges, which is why we need an Information Security Risk Analyst to add value across our teams, proactively partnering with the business to continually assess and identify potential risks, evaluating these to ensure that they are appropriately mitigated through properly implemented policies, procedures, training, systems and controls.

Key Responsibilities

The role will work closely with stakeholders across the business, ensuring a culture of Information Security and compliance with our ISO27001 certification, reporting to the Information Security Manager.

Key responsibilities include:

• Reporting:
• Assisting with access control management and reviews
• Assisting with data access audits
• Reviewing firewall and security appliance logs and report as appropriate
• Review and maintain Information Security policies
• Assist with evaluation, implementation and management of new Information Security initiatives
• Support compliance with ISO27001 certification
• Manage and maintain the Information Security Asset Management program
• Provide targeted training to business units in support of the Information Security awareness campaign
• Monitor and review IT security controls to identify operational effectiveness
• Define and report regularly on Information Security metrics and KPIs
• Assist with log management – review, alerting, investigating and escalating as appropriate
• Provide assistance to Information Security projects
• Manage Information Security Assessments for on-boarding third party suppliers
• Facilitate compliance with third party and client security assessments
• Assist with the management of the simulated phishing program
• Conduct business-related data classification assessment and security audits and manage remediation plans
• Assist with mapping controls to policies, procedures, and processes to ensure adequate coverage
• Monitor, analyse, and investigate security alerts, incidents and vulnerability reports from multiple sources (e.g. vulnerability scans, security appliance alerts, penetration test reports)
• Evaluate applications and systems to ensure they are configured securely as per vendor guidance
• Review, update and maintain the Business Continuity Plans

Skills, Knowledge & Expertise

• We want to hear from people with a minimum of 3 years' practical experience of operating within an Information Security role
• Involvement with compliance monitoring programmes and carrying out reviews testing adherence to laid down procedures
• Technically strong with good IT ability – including a minimum of a working knowledge of Microsoft suite
• Excellent relationship management skills – proven experience of building internal & external relationships, through strong interpersonal and team working skills

To view the full job description please see our website. 

About Ogier
Ogier provides legal advice on BVI, Cayman, Guernsey, Jersey and Luxembourg law. Our network of locations also includes Hong Kong, London, Shanghai, Singapore and Tokyo. Legal services for the corporate and financial sectors form the core of our business, principally in the areas of banking and finance, corporate, investment funds, dispute resolution, private equity and private wealth. We also have strong practices in the areas of employee benefits and incentives, employment law, regulatory, restructuring and corporate recovery and property. Ogier's corporate administration business, Ogier Global, incorporates and administers a wide variety of vehicles including public and private companies, partnerships and trusts. Ogier is based in 10 jurisdictions including BVI, Cayman Islands, Guernsey, Hong Kong, Jersey, London, Luxembourg, Shanghai, Singapore and Tokyo.

For more information please visit https://ogier.pinpointhq.com/en/jobs/45198.

---

« Return to Adverts