Information Security Analyst

Help us use technology to make a big green dent in the universe! It’s a really exciting time in energy. Help us make a real impact on shaping a better, more sustainable future. 
We are very excited to be building a small and efficient Cyber and Information Security team at Octopus Energy Group. We are looking for ambitious, knowledgeable, and experienced InfoSec Analysts to join our team, to grow with the rest of the company, and ensure we continue to do so in a secure and safe way.
You will be a key partner in defining what Security is at Octopus Energy Group. We will be shaping this team to provide a world class support service to our employees, building our way out of problems and undertaking transformational organisational change.
You’ll be primarily supporting our Octopus Energy Group services, while working with various Group Subsidiaries to expand our capabilities and develop creative solutions to business challenges and opportunities to continually improve our services.
Specifically, we're looking for InfoSec Analysts with at least 2 years of relevant experience to help us improve security across the Octopus Energy Group. 
If you’re passionate about Information Security and driving a positive security culture, we encourage you to apply!

What you'll do:

• Maintaining and improving our Information Security Management System (ISMS) and associated policies, guidelines, standards and procedures
• Contributing to the development of our security assurance function
• Performing security risk assessments and maturity assessments for OE Group
• Promoting a positive security culture and raising awareness through training and other initiatives
• Supporting the implementation of security processes and requirements
• Providing security advice and guidance to the wider technical team
• Liaising with stakeholders in relation to security issues and providing remediation/improvement recommendations
• Supporting Octopus Energy Group’s audit & compliance automation programs, enabling easy demonstration of compliance as we scale
• Working with the wider Security team to set the security strategy for Octopus Energy Group and its subsidiaries
• Keeping up to date with the latest security trends, and evaluating their potential impact on our systems, assisting  the business to understand and manage associated risks

This is a varied role in a growing team. You’ll have the opportunity to get involved in other security-related projects and initiatives as needed. We encourage you to take on new challenges that align with your skills and interests, and to collaborate with other teams to drive improvements in security across our entire organisation

What you'll have:

• A passion for security, a drive to make things better by harnessing technology
• Experience in, or knowledge of, automating GRC and other security processes to reduce manual work
• Strong analytical and problem-solving skills, with the ability to identify and mitigate security risks 
• A good understanding of information security principles and the ability to communicate this to people who aren’t subject matter experts
• Experience producing or supporting the delivery of security awareness programs in different business environments
• Knowledge of industry and regulatory security standards, such as ISO 27001, SOC2, and GDPR

A good candidate will have experience in at least some of the areas mentioned, we’re not expecting any candidate to be an expert in all areas!

What will help:

• Security certifications (any of the famous abbreviations) 
• Security qualifications (e.g. apprenticeships or degrees)
• Experience working in organisations that maintain ISO 27001 and/or SOC 1 and SOC 2 type II certifications
• A wider understanding of technology, especially AWS (or other CSPs)
• A background in a technical role or technical knowledge through education or training

💚 Why else you'll love it here

• 💰 Wondering what the salary for this role is? Just ask us! On a call with one of our recruiters it's something we always cover as we genuinely want to match your experience with the correct salary. The reason why we don't advertise is because we honestly have a degree of flexibility and would never want salary to be a reason why someone doesn't apply to Octopus - what's more important to us is finding the right octofit!
• 🎉 Octopus Energy Group is a unique culture. An organisation where people learn, decide, and build quicker. Where people work with autonomy, alongside a wide range of amazing co-owners, on projects that break new ground. We want your hard work to be rewarded with perks you actually care about! We were recently named the UK's top company to work for, and we ranked in the top ten in the Sunday Times Best Places to Work 2024. Our Group CEO, Greg has recorded a podcast about our culture and how we empower our people. We’ve also been placed in the top 10 companies for senior leadership
• 🎁 Visit our UK perks hub - Octopus Employee Benefits

Our process usually takes up to 4 weeks, but we’ll always do our best to flex around what works for you. Along the way, you’ll chat with our recruitment team and your Recruiter will help you throughout different stages. Got any burning questions before then? Drop us a message at hiring@octoenergy.com and we’d love to help!
If this sounds like you then we'd love to hear from you. 🚀
Are you ready for a career with us? We want to ensure you have all the tools and environment you need to unleash your potential. Need any specific accommodations? Whether you require specific accommodations or have a unique preference, let us know, and we'll do what we can to customise your interview process for comfort and maximum magic!
Studies have shown that some groups of people, like women, are less likely to apply to a role unless they meet 100% of the job requirements. Whoever you are, if you like one of our jobs, we encourage you to apply as you might just be the candidate we hire. Across Octopus, we're looking for genuinely decent people who are honest and empathetic. Our people are our strongest asset and the unique skills and perspectives people bring to the team are the driving force of our success. As an equal opportunity employer, we do not discriminate on the basis of any protected attribute. Our commitment is to provide equal opportunities, an inclusive work environment, and fairness for everyone.