Digital Security Assurance Analyst

Job Title: Group InfoSec Digital Security Assurance Analyst

Location: Hybrid working

Salary: Competitive base salary + benefits

Working Hours: 40 hours per week Monday – Friday

Job Status: Permanent

About The Role:

As a senior assurance analyst, you will lead the creation of processes that will align Assurance BAU with internal demand and External Assurance.

To accomplish this, you will be creating and participating in on-demand engagements, elaborating the supporting documentation, runbooks, and addressing business stakeholders thereby driving change.

From your daily activities, you’ll identify risks and or problems that you are responsible for, registering and scoring, and where necessary conduct the necessary engagements to drive remediations.

• Drive gap analysis exercises through scoring, audits and demand asks.
• Support compliance efforts across industry frameworks (e.g., CSA STAR, NIST), and collaborate with internal product teams to validate controls in both build and run phases.
• Create processes designed to facilitate assurance activities, along with the respective documentation, and mentor team-mates through these.
• Support compliance efforts in assistance to external assurance needs.
• Communicate to business stakeholders our analytical findings, supported recommendations and execution plans.
• Support risk assessments aligned with Digital Security Standards, TOMs, and CSA STAR frameworks.
• Collaborate with engineering and ops to address risk gaps.
• Support team peer reviewing of assurance process and subsequent maintenance.
• Maintain assurance documentation and audit trail.
• Participate in assurance consultancy exercises.

• Relevant qualification or experience in Risk Management, Auditing, and Compliance.
• Relevant qualification or experience in cloud computing (AWS and/or Azure).
• Relevant qualification or experience in secure systems design and implementation.
• Strong knowledge of Info Sec frameworks, and security control mapping
• Proficiency in Microsoft Office Suite (Excel, PowerPoint, Word) and a willingness to learn project management tools.
• Strong organisational and time-management skills.
• Good communication skills and a positive attitude towards problem-solving.

• Interest in auditing and risk management
• Familiarity with project management software (e.g., Trello, Jira) is useful but not required.
• Eagerness to learn and develop within the role through mentoring as a Subject Matter Expert and being mentored from within

Our policy is to employ the best qualified people and provide equal opportunity for the advancement of employees including promotion and training and not to discriminate against any person because of gender, race, ethnicity, age, sexual orientation, religion, belief or disability.