Senior Information Security Analyst

As the Senior Information Security Analyst, you will be responsible for safeguarding the company from information security threats by implementing and maintaining both technical and organisational measures. You will collaborate closely with the Information Security Steering team and work as part of the wider IT department.

What will you be doing?

• Manage and maintain the Information Security Management System (ISMS) in accordance with ISO 27001.
• Review and assess information security-related projects, identifying and analysing associated risks.
• Investigate and respond to security incidents and queries.
• Continuously monitor IT infrastructure for potential security issues, vulnerabilities and anomalies.
• Administer the Security Information and Event Management (SIEM) system, along with other IT security platforms.
• Conduct internal audits to ensure compliance and identify opportunities for improvement.
• Coordinate external penetration testing to evaluate security vulnerabilities.
• Prepare and present monthly and quarterly reports on information security.
• Manage and update content for the information security awareness platform for employees and key suppliers, ensuring up-to-date training on information and cybersecurity best practices.
• Research and recommend security enhancements and improvements.
• Stay informed on the latest developments in information technology and security standards.

Wed like you to bring to us.

• Significant experience in Information Security
• Experience maintaining and auditing Information Security Management Systems (ISMS) in line with ISO 27001.
• Ability to assess risks, identify vulnerabilities and develop pragmatic security solutions for complex IT architectures requirements.
• Experience with penetration testing and vulnerability assessments; relevant certifications in ethical hacking are beneficial.
• Hands-on experience in administering and managing SIEM platforms for threat detection and analysis.
• Customer service oriented with the ability to build strong relationships with internal stakeholders and work through security queries with none technical colleagues.
• Analytical and creative thinking skills, with the ability to develop pragmatic solutions to customer requirements
• The ability to organise the daily work schedule and delegate where necessary.
• Fluent English and nice to have German (B1/B2 minimum) language skills.

If this position is of interest but you dont think you meet all of the criteria listed, please consider applying still. We look to recruit people with the right attitude, potential and ambition and for the right candidate, we will provide further training and support to enable you to develop in the role.