Information Security Analyst

Social network you want to login/join with:

We have an incredible opportunity for an Information Security Analyst to join us in either Cardiff, Hove, or Solihull!

You’ll play a key role in providing the technology expertise required to implement and support the information and cyber security strategy, policy, and standards in our Retail division. Working in close collaboration with risk, audit, and technology teams, you’ll reduce and mitigate Information Security risks according to an agreed risk appetite.

Perhaps you come from a technical background and you’re looking for a move into governance? If so, this could be the ideal opportunity for you!

What you'll be doing:

• Supporting the Information Security Manager and other key stakeholders in securing the information assets of the UK Protection business
• Providing technical security consultancy to internal projects and key system enhancements, ensuring IT security best practice is adhered to and that key company projects are compliant with IT security policies, driving continual improvement throughout the project lifecycle
• Working on the security architecture of the estate alongside the IT Operations Teams, driving for secure-by-design solutions
• Assisting with penetration tests, firewall rules, and remediation activities, carrying out audits and risk assessments in line with group, external, and internal IT security audit schedules
• Maintaining and updating the information security controls within the estate in line with risk appetite and governance
• Managing and calibrating security tooling to maximize effectiveness of uptake and use across the estate
• Supporting implementation of appropriate governance, reporting, and escalation of changes impacting customers to ensure key checkpoints are met in line with stakeholder and business requirements
• Ensuring system or process changes impacting customer journeys are reviewed by business stakeholders to assess their impact on customer outcomes

Who we're looking for:

• Knowledge of industry best practices in process, controls, tools, standards, and methods in Information & Cyber Security and IT change
• Ability to explain complex technical issues to a non-technical audience
• Experience collaborating with stakeholders at different seniorities
• Prior experience as a Security Analyst is a plus
• Industry certifications such as (ISC)2, ISACA, GIAC, or CompTIA are highly desirable

Benefits include:

• Performance-related bonus and share schemes
• Generous pension contribution
• Life assurance
• Healthcare plan (permanent employees)
• At least 25 days holiday plus public holidays, with options to buy and sell holiday
• Family leave policies
• Electric car scheme via salary sacrifice
• Discounts on products and high street stores
• Modern, collaborative workspaces prioritizing wellbeing

Additional Information:

At L&G, we believe in generating positive returns today while building a better future. We foster an inclusive culture with opportunities for collaboration among diverse backgrounds. We support flexible working arrangements and value your strengths, potential, and connection to our purpose.