Information Security Analyst

at  Gowling WLG UK LLP

ABOUT YOU:

We are seeking an individual who shows genuine enthusiasm for governance, risk, and compliance, and stays informed about the latest trends in IT security.
Within this role you will be supporting the business and developing relationships with stakeholders of all levels and therefore you will require excellent analytical, written and verbal communication skills including the ability to effectively communicate technical information to non-technical users.
To succeed in this role, you will be a team player, providing support to colleagues and managers and working with teams across the firm.
Your approach to work will be methodological with excellent attention to detail, being able to excel in a fast-paced, ambiguous, and evolving marketplace. The successful individual will be able to adapt to various internal and external situations whilst delivering high quality service providing a flexible approach with a customer and business focus.

QUALIFICATIONS/CERTIFICATIONS

• Have obtained (or willing to obtain) industry recognised certifications where applicable/relevant .

PREVIOUS EXPERIENCE OF THE FOLLOWING WOULD BE EXTREMELY ADVANTAGEOUS, BUT NOT A SPECIFIC REQUIREMENT:

• Awareness of ISO 27001, Cyber Essentials and PCI/DSS accreditation requirements.
• Knowledge and experience of working within a NIST framework.
• Knowledge of:

EQUAL OPPORTUNITIES:

Gowling WLG is committed both to promoting equality and diversity in the firm and to Equal Opportunities in employment. The firm believes in equality of opportunity regardless of race or racial group (including colour, nationality, ethnicity, national origins), religion or belief, age, disability, sexual orientation, sex, gender re-assignment and gender identity, marriage and civil partnership, and pregnancy, maternity and paternity. This also includes any incidents of perceptive or associative discrimination and harassment.
At Gowling WLG we seek to attract and retain talented people from a diverse range of backgrounds and cultures, to create an exciting and rewarding place to work. Our aim is to fulfil everyone’s potential and together to achieve personal and business goals.
If you have any queries in relation to this position or would like to see a full job description please contact Meg Astley at meg.astley@gowlingwlg.com

We have an exciting opportunity to join our Technical Services and Security team as an Information Security Analyst. This role will be reporting into our IT Compliance Manager along with supporting the Information Security Officer for the delivery of operational Information Security and support the delivery of the Integrated Management System (IMS), which includes ISO 27001, Information Security and ISO 22301, Business Continuity:

The key objectives of the role are:

• To manage, maintain and monitor the Information Security Management System (ISMS) within the firm’s Integrated Management System (IMS) – as well as the links to the Business Continuity Management System (BCMS)
• To embed a culture of information security within the firm, with a focus on security by design
• To act as an interface for security between the strategic and process-based activities and the work of the technology-focused experts, analysts, and administrators.
• To work with the IT organisation and business management to align security priorities and plans with key business objectives.

As an Information Security Analayst you will be a critical member of the BIS Team underpinning assisting with the implementation of Gowling WLG’s IT security roadmap and will be expected to develop relationships within this team and key stakeholders across the business to provide best in class security architecture.