Infosec Analyst
Cambridge, United Kingdom
Applications have closed
Gearset
Gearset is the only platform you need for unparalleled deployment success, continuous delivery, automated testing and backups.
We’re proud to be trusted by some of the largest companies in the world to handle their Salesforce DevOps. Underpinning that trust is a commitment to protect their data through our best-of-breed approach to security and compliance, and this is only getting more important as we grow our customer base in increasingly regulated sectors.
This is a fantastic opportunity to progress your career in security within the tech sector. This role will provide you with exposure to several key areas including information security, audits and relevant project work. As the second hire within the team, there’ll be lots of opportunity to progress within the role and specialise within a certain area of the business in the future.
This is a fantastic opportunity to progress your career in security within the tech sector. This role will provide you with exposure to several key areas including information security, audits and relevant project work. As the second hire within the team, there’ll be lots of opportunity to progress within the role and specialise within a certain area of the business in the future.
What’s the opportunity for a Infosec Analyst at Gearset?
- Build on your prior experience from an information security role, within a technology company, to support our ambitious company growth plans.
- Ownership over keeping our security documentation accurate and up to date, such as policies, procedures, and support documentation across our information security programs.
- Own commercial relationships and support teams in sometimes complex information security negotiations, while making sure we respond accurately and within given timescales.
- Be responsible for maintaining our current ISO 27001 compliance and certification through continuous improvement activities, as well as supporting preparation for internal and external audits.
- Gain experience in the implementation and ownership of additional compliance based projects as we increase the international regulation and standards we comply with.
- Help keep us efficient to work with by spotting common blockages or queries in deals and recommending ways that we might standardise and improve documentation or processes.
What you’ll achieve
- Become a technical expert on the company and our products to streamline customer onboarding, and security reviews.
- Own reviewing and responding to our customer security requests.
- Ownership of compliance and reporting to the international information security standard ISO 27001, to ensure Gearset retains our certification and continues to provide the highest level of protection to our customers’ data.
- Work as part of the compliance project team when implementing new regulations or standards such as HIPAA, fedRAMP etc.
- Have the opportunity to get certified to international standards on Information Security, Cyber Security, etc.
About you
- Have experience in an information security role, within a technology company and hold either a ISO 27001 Lead Implementer or Lead Auditor certificate.
- In-depth knowledge of ISO 27001 standards & proven experience in implementing ISO 27001 and maintaining the certification
- Great technical knowledge of AWS Cloud infrastructure, and application security
- A technical predisposition, and the desire to learn
- Excellent communication skills, with attention to detail and a passion for always delivering a great customer experience
- The ability to react to the needs of a rapidly growing company and comfortable working in an ever changing environment
Great to haves
- A degree in Computer Science, Information Security, Cybersecurity, or a closely related discipline
- A recognised Information Security qualification such as CISSP, CompTIA Security+ etc
- Past exposure to other regulations or frameworks such as NIST, HIPAA, fedRAMP
- Knowledge of DevOps and DevSecOps
- Knowledge of data protection laws such as GDPR, CCPA
Salary and benefits (the stuff you’d expect!)
- Salary up to £45-55k per annum (depending on experience)
- This is a full time opportunity, working Monday to Friday within our Cambridge office with the option of flexible home working (for most of us that looks like 2-3 days a week in the office)
- Generous personal development budget for courses, conferences, or whatever is useful to your professional development in the role of up to £1500 per year
- Top end hardware provided
- Free lunch in the office
- 25 days holiday plus bank holidays (with the option to buy an extra 5 each year)
- Company Pension Plan (matching up to 5%)
- Bupa health care
- Life Insurance & critical illness cover
- Discounted gym membership, as well as a range of health and wellness benefits
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
32
7
0
Category:
Analyst Jobs
Tags: Application security Audits AWS CCPA CISSP Cloud Compliance CompTIA Computer Science DevOps DevSecOps FedRAMP GDPR HIPAA ISO 27001 NIST
Perks/benefits: Career development Conferences Fitness / gym Flex hours Health care Wellness
Region:
Europe
Country:
United Kingdom
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Information System Security Officer jobsSenior Cloud Security Engineer jobsSenior Security Analyst jobsInformation Security Manager jobsSenior Cybersecurity Engineer jobsInformation Security Specialist jobsSenior Network Security Engineer jobsIT Security Engineer jobsSecurity Consultant jobsSenior Penetration Tester jobsSenior Information Security Analyst jobsSecurity Specialist jobsSenior Cyber Security Engineer jobsCyber Security Specialist jobsChief Information Security Officer jobsInformation System Security Officer (ISSO) jobsIT Security Analyst jobsStaff Security Engineer jobsSystems Engineer jobsPrincipal Security Engineer jobsCloud Security Architect jobsSenior Product Security Engineer jobsCyber Security Architect jobsSecurity Operations Analyst jobsSystems Administrator jobs
CI/CD jobsMalware jobsSaaS jobsEDR jobsForensics jobsSDLC jobsEncryption jobsIDS jobsSplunk jobsBash jobsIPS jobsTop Secret jobsRMF jobsIntrusion detection jobsOWASP jobsSQL jobsThreat detection jobsCompTIA jobsFinance jobsITIL jobsDocker jobsDoDD 8570 jobsActive Directory jobsCRISC jobsGIAC jobs
TCP/IP jobsVPN jobsHIPAA jobsTerraform jobsClearance Required jobsUNIX jobsIT infrastructure jobsBanking jobsMITRE ATT&CK jobsOSCP jobsSANS jobsJavaScript jobsPolygraph jobsCISO jobsDNS jobsSOX jobsSOC 2 jobsAnsible jobsCCSP jobsJira jobsGCIH jobsSOAR jobsIndustrial jobsData Analytics jobsCryptography jobs