Security Control Assurance Analyst

Information Security London, United Kingdom


Description

The Company

G-Research is a leading quantitative research and technology company. We have a deep interest in ground-breaking scientific research and cutting-edge technology. We offer a dynamic, flexible and highly stimulating environment where good ideas are prized and rewarded. Our working culture is positive and informal with no dress code.



The Role

This is a rare opportunity for a motivated, meticulous, and technically-minded person to join the Security Control Assurance team. The team is part of the Security Assessment and Assurance (SAA) department, which has overall responsibility for security risk and assurance.

The Security Control Assurance team is responsible for providing assurance of technical and process security control effectiveness, supporting security risk management activities and contributing to executive management reporting. This includes responsibility for the design, implementation, operation, maintenance and continuous improvement of the framework for continuously testing and reporting on all security controls.

As a Security Control Assurance Analyst your responsibilities will include, but not be limited to:
  • Working closely with the Security Risk Management team to ensure there is integration between the security risk and assurance functions.
  • Working closely with the Security Implementation Group (SIG) to discuss security control assurance findings.
  • Ensure the team can provide timely updates in both technical context as well as executive summaries in case the posture/threat landscape changes.
  • Keeping up to date with emerging security vulnerabilities and threats.

The Individual

Due to the interactive nature of the role, you will be expected to possess strong verbal and written communication skills and be able to manage and prioritise a large number of requirements with ease. It is also essential that you are able to understand complex security controls as well as software and system interactions.

Other desired skills include:

  • Minimum two years' experience of technical security assurance testing (please note this is not an audit role).
  • Penetration tools and techniques to discover ways of bypassing security controls.
  • Automated security compliance tools and automation of security control testing.
  • Experience of technical and process security controls for example AV, IDS, proxies, ASV, SIEM, FIM, IAM, PIM, cryptography, software security controls, and access management processes.
  • Strong experience in one or more of the following scripting language: Python, PowerShell, PHP.
  • SQL.
Desirable skills:
  • Knowledge of IT control and assurance frameworks (e.g. ISO, NIST, COBIT, PCI).
  • Experience in software development, security design, testing, operations and/or IT operations.
  • Security risk management.

The Location

Based in the heart of Central London, we are served by 5 stations and 6 tube lines, with the closest station Goodge Street within seconds of the office. With vibrant West End close by, you are in walking distance of many top London attractions, theatres and shopping districts.

 

Why should you apply?

  • Market-leading compensation plus annual discretionary bonus
  • Top private healthcare
  • Excellent growth and advancement opportunities
  • Pension Scheme