Loading...
Share this Job

Security Compliance Analyst (12 month FTC)

Date: 24-Jul-2021

Location: Oxford, GB, OX4 4DQ GB

Company: Nominet

ABOUT US

Our name may not be familiar, but you probably use our services every single day – ever visited a website ending in a .uk? We’ve been running the national internet namespace for a quarter of a century, sitting proudly at the heart of the UK's critical digital infrastructure. Such a responsibility requires world-leading cyber security and we’ve gaining a reputation for our innovative new security solutions, protecting our own systems and beyond.
 But we’re also a profit with a purpose business. We invest in making a positive impact of the lives that are being most disrupted in our digital age: young people. We’re known as one of the UK’s leading ‘tech for good’ funders and the commitment to building a connected, secure and inclusive digital future drives everything we do. It’s not just rhetoric – ask our staff.

 

WHAT YOU CAN EXPECT:

Remote working, a competitive salary depending on experience, plus excellent benefits including a 15% bonus, 30 days holiday allowance, flexible working hours, healthcare, pension scheme, life assurance, wellbeing allowance and other flexible benefits  

ABOUT THE ROLE

Security is critical at Nominet and your role as a Security Compliance Analyst will be too as you work in our security team helping to safeguard Nominet’s infrastructure and data systems.  

Security and resilience are top priorities as Nominet systems are integral to the continued operations of the Internet. As a Security Compliance Analyst, you will be responsible for identifying, evaluating and interpreting regulatory and contractual security requirements as well as control deficiencies and highlighting any information security risks. 

You will be involved in creating frameworks and looking at regulations and compliance to ensure we are fulfilling our legal security obligations. Naturally inquisitive, you’ll will be involved in pulling together information from various sources to ensure we are compliant. 

This role can be based remotely with meaningful contact occasionally at our offices in Oxford. We are also open to part-time working hours. 


Combining your knowledge of security compliance requirements and security controls, you will have significant experience of working in a regulated environment.
 

WHAT YOU'LL BE DOING

 

The Security Compliance Analyst will help safeguard Nominet’s infrastructure and data systems, combining knowledge of security landscape and using the tools to mitigate cyber threats, providing insight and assurance to millions of people across the globe.   

We are looking for a passionate and experienced Analyst to join our Security team working with a knack for evaluating information gathered from multiple sources, deconstructing high-level information such as security compliance requirements from across the business including ISO27001, NIST SP 800-171, NCSC (National Cyber Security Centre of the UK), the Cyber Assessment framework and the Australian Government ISM (Information Security manual). 

 

But there’s a whole lot more to this role too… you will also be involved in 

 

  • Conducting a gap analysis audit to assess compliance status 

  • Creating a single high level view of compliance status 

  • Creating a process in which to maintain compliance to changing requirements 

 

WHO YOU ARE:

You’ll have a strong interest in network and cyber security and significant experience managing, implementing or auditing security frameworks across various business functions. Strong analytical skills, good communication skills and a high-level of attention to detail are key to this role. 

 

You will also have robust knowledge and understanding of NIST, NCSC guidelines or other information security standards. . 

 

Essential Skills : 

• Significant experience conducting security control assessments or audits 

• Ability to manipulate and manage complex qualitative data  

• Ability to create and maintain security documentation 

• Broad understanding of security controls including access management, cryptography, operational security and personnel security 

• Significant experience in leading change to policy and processes to support business outcomes 

 

Desirable Skills:

Working knowledge of a security framework such as ISO27001 is highly desirable

 

If this sounds like you and you are ready to join a fun and forward thinking company, get in touch! 

 

Our focus is on keeping teams connected and engaged whether we're in the office or working from home, putting people’s wellbeing first.  We operate a hybrid way of working, balancing time between the office and home. Some roles may be more flexible and mostly remote – this is always role dependant so worth covering off in any conversations you have throughout the process. We're also open to a chat about flexible working. No promises, but we reckon that if it works for you then it could work for us.


Nominet is an Equal Opportunity Employer and all qualified applicants will receive consideration for employment without regard to race, colour, age, disability, religion, gender or sexual orientation. Our work connects people from across the globe and we want to reflect that in our workplace. Everybody is accepted and valued here, and we are a team that works as one towards our goals. We recognise that diverse teams make strong teams and we encourage people from all backgrounds to apply.
Nominet is committed to providing reasonable adjustments during our recruitment process. If you need assistance, please reach out to us at info@recruitment.nominet.uk.

 

Successful candidates will be asked to complete a Baseline Personnel Security Standard Pre-Employment check and will be required to undergo various checks including: Identity, Right to Work; Employment/Education History and Criminal Record. If you are unable to meet this and any associated criteria, then your employment may be delayed or rejected.


Visit www.nominet.uk and connect with us on LinkedIn and Twitter 
 


Job Segment: Information Security, Technology