IT Security Auditor

Derby - D Site - Sinfin D Site (UK-IC), United Kingdom

Full Time GBP 28K - 67K * ^est.

Rolls-Royce

Rolls-Royce pioneers cutting-edge technologies that deliver clean, safe & competitive solutions to meet our planet’s vital power needs.

View all jobs at Rolls-Royce

Apply now Apply later

Posted 1 day ago

Job Description

IT Security Auditor

Derby/Bristol, UK

Hybrid – minimum 3 days on site per week

Rolls-Royce offers an excellent opportunity for an IT Security Auditor to join our Cyber Security, Risk and Compliance team. In this role you will be undertaking assessment activities to identify weaknesses, policy violations in our IT systems (and/or applications) and create action plans to correct any problems in order to prevent future cyber security breaches.

You will be working with other Security Auditors and Information Assurance Specialists to ensure a common approach to Security Audit across Rolls-Royce.

Why Rolls-Royce?

Rolls-Royce is one of the most enduring and iconic brands in the world and has been at the forefront of innovation for over a century. We design, build and service systems that provide critical power to customers where safety and reliability are paramount.

We are proud to be a force for progress, powering, protecting, and connecting people everywhere.

We want to ensure that the excellence and ingenuity that has shaped our history continues into our future, and we need people like you to come and join us on this journey.

We’ll provide an environment of caring and belonging where you can be yourself. An inclusive, innovative culture that invests in you, gives you access to an incredible breadth and depth of opportunities where you can grow your career and make a difference.

What we offer:

We offer excellent development opportunities, a competitive salary, and exceptional benefits. These include bonus, employee support assistance and employee discounts.

What you will be doing:

Support the Head of Cyber Security Policy & Compliance in identifying and planning cyber security audits across the IT Function, within business areas, of our IT supply chain, and 3rd party suppliers into the business.
Undertaking those audits and providing timely reports.
Creating corrective action plans, in conjunction with the target system owner, in order to improve the cyber security posture of that system.
Analysis of the audit output to identify trends to inform the improvement of policy, process, procedure or technology.
Presenting findings to a wider audience including senior management.
Undertaking other tasks to support the wider cyber security team, such as work on the cyber culture programme.
Assist the wider team in developing and defining Information Security policies, standards, guidelines, and procedure to an agreed framework (ISO27000)

Who we’re looking for

At Rolls-Royce we put safety first, do the right thing, keep it simple and make a difference. These principles form the behaviours that guide us and are an essential component of our assessment process. They are the fundamental qualities that we seek for all roles. For this role you will need to demonstrate understanding of the appliable health and safety standards and we are looking for someone who is/has:

Good overall knowledge of information systems practices and applications. Thorough understanding of Rolls-Royce management processes and practical knowledge of the principles of information security
Understanding of Cyber Security frameworks and benchmarks to which we have to demonstrate compliance to (for example ISO27000, NIST & CIS)
Communicates well and has the skill to influence through persuasion in a formal context
Broad knowledge of IT security demonstrated by attainment of appropriate qualifications
Experience / awareness of cloud technologies and capabilities in an enterprise environment
Willingness to learn and promote wider compliance requirements such as Product Safety, Data Privacy and Export Control

We are an equal opportunities employer. We’re committed to developing a diverse workforce and an inclusive working environment. We believe that people from different backgrounds and cultures give us different perspectives. And the more perspectives we have, the more successful we’ll be. By building a culture of respect and appreciation, we give everyone who works here the opportunity to realise their full potential.

We welcome applications from people with a refugee background.

You can learn more about our global Inclusion strategy at Our people | Rolls-Royce