Senior Information Security Analyst

Help us use technology to make a big green dent in the universe!
Kraken powers some of the most innovative global developments in energy.
We’re a technology company focused on creating a smart, sustainable energy system. From optimising renewable generation, creating a more intelligent grid and enabling utilities to provide excellent customer experiences, our operating system for energy is transforming the industry around the world in a way that benefits everyone.
It’s a really exciting time in energy. Help us make a real impact on shaping a better, more sustainable future.
KrakenFlex
The energy industry is undergoing the largest transformation since industrialisation at an unprecedented rate of change and we are positioning ourselves to be at the heart of that change. 
Our aim is to be the leading global provider of solutions that enable customers to release £30bn of value per annum from distributed energy resources (DERs). We are building a Software as a Service (SaaS) subscription business with a global addressable market of £2.4 billion per annum, by digitally connecting hundreds of thousands of DERs with energy markets.
We have already attained a market leading position and KrakenFlex is a recognised thought leader and innovator in the industry.
We're looking for a Senior Information Security Analyst with at least 4 years of relevant experience to help us improve security across KrakenFlex, and the broader Kraken Technologies business. If you’re passionate about Information Security and driving a positive security culture , we encourage you to apply!
This is a varied role in a growing team. You’ll have the opportunity to get involved in other security-related projects and initiatives as needed. We encourage you to take on new challenges that align with your skills and interests, and to collaborate with other teams to drive improvements in security across our entire organisation

What you'll do

• Maintain existing certifications (ISO 27001, SOC 1 and 2), and leading on attaining additional relevant certifications in the future
• Helping to grow and develop our security assurance function
• Maintaining and improving our Information Security Management System (ISMS) and associated policies, guidelines, standards and procedures
• Performing security risk assessments
• Promoting a positive security culture and raising awareness through training and other initiatives
• Supporting the implementation of security processes and requirements
• Providing security advice and guidance to the wider technical team
• Liaising with stakeholders in relation to security issues and provide future recommendations
• Assisting with client-facing assurance activities and supporting Kraken’s customer-facing teams (sales & ongoing experience) 
• Be part of the Kraken-wide Information Security community, working with InfoSec, Privacy, and Compliance functions to align the grid flexibility services business with the other Kraken businesses.

What you'll need

• Good experience in at least some of the areas mentioned above (we’re not expecting any candidate to be an expert in all areas)
• Good understanding and practical experience of the principles/issues involved in Security & Technology Risk Management 
• Previous experience implementing and/or maintaining an Information Security Management System (ISMS) in accordance with ISO 27001
• Good understanding of information security and the ability to communicate this to people who aren’t subject matter experts
• Previous experience working in certified organisations where you’ve led compliance audits and performed security risk assessments.

It would be great if you had

• Security certifications (any of the famous abbreviations) 
• Security qualifications (e.g. apprenticeships or degrees)
• Experience with preparing high quality documentation
• Knowledge of the trust service criteria for SOC 1 and SOC 2, and experience working in SOC certified organisations
• Experience with critical infrastructure security requirements, or regulations like NIS/2
• A wider understanding of technology especially AWS (or other CSPs)
• Experience with energy systems, energy markets or within the energy industry regulatory landscape would be helpful

Why else you'll love it here

• Wondering what the salary for this role is? Just ask us! On a call with one of our recruiters it's something we always cover as we genuinely want to match your experience with the correct salary. The reason why we don't advertise is because we honestly have a degree of flexibility and would never want salary to be a reason why someone doesn't apply to Kraken - what's more important to us is finding the right Kraken-fit!
• Kraken has an unique culture. An organisation where people learn, decide, and build quicker. Where people work with autonomy, alongside a wide range of amazing co-owners, on projects that break new ground. We want your hard work to be rewarded with perks you actually care about! Our Group CEO, Greg has recorded a podcast about our culture and how we empower our people
• Visit our perks hub - Kraken Employee Benefits

If this sounds like you then we'd love to hear from you.
Are you ready for a career with us? We want to ensure you have all the tools and environment you need to unleash your potential. Need any specific accommodations? Whether you require specific accommodations or have a unique preference, let us know, and we'll do what we can to customise your interview process for comfort and maximum magic!
Studies have shown that some groups of people, like women, are less likely to apply to a role unless they meet 100% of the job requirements. Whoever you are, if you like one of our jobs, we encourage you to apply as you might just be the candidate we hire. Across Octopus, we're looking for genuinely decent people who are honest and empathetic. Our people are our strongest asset and the unique skills and perspectives people bring to the team are the driving force of our success. As an equal opportunity employer, we do not discriminate on the basis of any protected attribute. Our commitment is to provide equal opportunities, an inclusive work environment, and fairness for everyone.