Security Compliance Analyst (Hybrid)

Company Description

Fastmarkets is an industry-leading price-reporting agency (PRA) and information provider for global commodities, providing price data, news, analytics and events for the agriculture, forest products, metals and mining and new-generation energy markets.

Fastmarkets' data is critical for customers seeking to understand and predict dynamic, sometimes opaque markets, enabling trading and risk management. Fastmarkets is a global business with a history dating back to 1865 and is built on trust and deep market knowledge. It has more than 600 employees spread across global locations in the UK, US, China, India, Singapore, Brazil, Belgium, Finland and beyond. 

Job Description

The Role

• The GRC Information Security Analyst is responsible for developing, implementing, and maintaining the organization's information security governance, risk management, and compliance programs. This role ensures that all information security policies, procedures, and controls are in place and effective, mitigating risks and ensuring compliance with relevant regulations and standards. This role needs to collaborate with various departments to promote a culture of security awareness and continuous improvement, safeguarding the organization's information assets.

Principal Accountabilities

• ISMS: Create, update, review, and maintain.

• Information security controls & framework: Design, Develop, implement, and test/monitor their effectiveness and maturity levels.

• SPbD: Manage and operate the Security Privacy by Design (SPbD) process.

• Information security related risk management: identify, register, update, maintain.

• M&A’s: Assess and support through a GRC lens.

• Third party risk management: Conduct reviews.

• Information security training: Manage and operate Information security training program including Phishing testing.

• Act as point of contact for InfoSec: for all GRC matters.

• Audit IT/Tech controls and processes.

• Stakeholder collaboration: Work with Legal, Risk & compliance, Data Protection/Privacy, and Tech teams, to ensure Fastmarkets is compliant with rules and regulations.

KEY INTERFACES

• GRC Information Security Manager
• Head of Information Security
• Information Security team
• Relevant 3rd parties
• IT teams
• LRC
• Business teams
• Data Protection/Privacy

Qualifications

We recruit talented, dynamic people with diverse backgrounds and experiences, all united by a belief in our mission to provide the world’s leading and most trusted price reporting, events, and intelligence service for the markets we serve. We’re proud to be an equal opportunities employer and are committed to creating a fully inclusive workplace, where everyone feels able to participate and contribute meaningfully.

If you are open-minded, curious, resilient, solutions-oriented and committed to promoting equality, then read on...

KNOWLEDGE, EXPERIENCE AND SKILLS

We are looking for an individual who is highly motivated, driven, and have a passion to be part of a fast-paced, successful team. Being a strong team player is also important as well as someone who is happy to work flexibly.

• A good understanding and working knowledge of information security frameworks and standards such as NSCS CAF, NIST, ISO 27001, and PCI-DSS.

• A good understanding and working knowledge of regulations and acts such as: Data Protection Acts, Freedom of Information Acts, GDPR etc.

• Excellent policy/documentation skills including creating and updating.

• Proven experience in IT audit, understanding controls and procedures.

• A continuous improvement mindset, and a commitment to knowledge sharing.

• Ability to prioritise workloads and problem-solve.

• A self-starter who is confident in communicating with business and technology partners and senior management.

• Excellent communication skills (written and verbal) across different functions.

If you're excited about the role but your experience, skills or qualifications don't perfectly align, we encourage you to apply anyway.

Additional Information

Our Values

Fastmarkets people come from all different walks of life. It’s this mix of brilliant personalities, experiences and insights that gives us that warm, open, and friendly culture you can feel as soon as you meet us. But however wonderfully different we all are, there are six things we all have in common – and they form our Fastmarkets values.

Created by our own employees to reflect some of the personal traits that Fastmarkets people have, our values are key to what makes our culture unique. They reflect who each of us are and they're embedded in everything we do. Our values are:

• METRICS DRIVEN. We use insights to improve our customers’ experience and our business performance
   
• ACCOUNTABLE. We are accountable to ourselves and those we work with: we keep our promises and get things done
   
• GROWTH MINDSET. This value enables us to be nimble to the changing realities and operate with a sense of urgency
   
• INCLUSIVE. We are inclusive and respectful, celebrating each of us and giving everyone a deep sense of belonging with the desire to bring their best self to work every day.
   
• CUSTOMER CENTRIC. We are customer-centric in all that we do
   
• COLLABORATIVE. We are collaborative, able to work across teams and capitalise on the diversity of intellect, perspectives, and experiences.

You’ve read a little about us – now it’s over to you!

If you like what you’ve read so far and think you can see yourself as a Fastmarkets person, it’s time to fill in your application form. This form is an important part of the selection process: it’s used to determine whether or not you’ll be chosen to have an interview and acts as a basis for the questions we’ll ask you on the day.

It’s vital that you try to capture all the relevant information we have asked for on the form so we can get a good feel for who you are and why you’re great.