My Market Leading Energy and Utilitiesclient based in Warwickrequire an accomplished Information security analystto join them for an exciting and challenging engagement.
Location: Base is warwick with National and International travel
Duration: Initial 6 months (extension)
IS Compliance Analyst:
Complete compliance and Information Security assessments and identify control deficiencies to ensure compliance with regulations, internal controls, policies and procedures; recommend improvements in internal control structure; identify control deficiencies; conduct independent assessments of third parties; conduct assessments for utility regulations, including GDPR, Data Privacy, and other international, federal and state regulations. Engage with stakeholder to establish relationships and manage expectations. Engage with key stakeholders including legal, corporate compliance, IS and the wider business to understand needs and support executives in the management of UK compliance and security matters.
Job Duties: * Establish, manage and maintain relationships with key stakeholders * Interface with wider Compliance organization acting as a compliance champion * Develop, plan and execute compliance assessment based on documented process * Develop and execute clearly written test plans based on control objectives in a repeatable manner * Ensure compliance with established internal control procedures by examining records, reports, operating practices, and documentation. * Verifies the design and effectiveness of controls to secure information system assets, including people processes and technologies. * Complete work papers by documenting compliance assessments and findings clearly articulating test methodology and steps taken. * Prepares reports by collecting, analyzing, and summarizing information * Prepare regular status reports for internal management * Communicate findings by preparing a final report; discussing findings with auditees and documenting results * Communicate findings with the IS risk team to coordinate findings, develop action plans based on risks and confirm that appropriate steps are taken to close out findings. * Ensure controls support Compliance with Regulations; enforcing adherence and advising management on needed actions.
Willing and able to travel (International) - Required
CISA - Required (All information security qualifications)
CRISC - Preferred
CISM - Preferred CISSP - Preferred
Understanding of Utility regulations (Gas and Electric) Understanding of International Regulations a plus Understanding of new regulations, including GDPR