Information Security Analyst


  • Location
    • Richmond, UK
  • Date Posted
  • 10 Sep 2019
  • Function
  • Tech Ops
  • Sector
  • Retail

We are notonthehighstreet. Home to over 5000 of the UK’s best small creative businesses, we have been changing the online retail landscape since 2006. Whether you’re working with our Partners to help grow their business, or behind the scenes developing code, we are continuously innovating & working on some really cool stuff all at the same time. And the best bit? We’re making a difference to our Partners’ lives as we do it.

We’re about to embark on an ambitious new phase of development to advance our technology, including platform re-architecture, rewriting the front-end and introducing new big data & machine learning platforms. It’s an exciting time and we need to strengthen and grow our teams!

What we need

As our Information Security Analyst, you will be assisting with the implementation and maintenance of our security programme.

You will have a broad range of information security experience, including experience in risk and compliance management, vulnerability management and incident response.

Some of the things you'll be doing

  • Conduct risk assessments to identify, assess, and measure information security risks for systems, facilities, networks, projects and third parties
  • Help to design, develop and deliver security education and training programmes for all of the development teams.
  • Help to make sure the teams understand threat analysis and management, and are able to take ownership of both.
  • Document and implement risk assessment process to be deployed across the organisation
  • Assist with the activities which ensure compliance to security policies, standards as well as legal and operational requirements such as GDPR, PCI-DSS. Collaborate with Legal team and Risk Management board in the management of operational risk register and recommend appropriate actions and assist with mitigation planning.
  • Manage Vendor Security oversight, including initial security assessments, regular check ups throughout the relationship and management of any Information Security incidents should they occur.
  • Assist in governing policies for security tools, responding to events and evaluating data to enable reporting and subsequent analysis.
  • Support the development and maintenance of NOTH’s information security policies, procedures and guidelines in accordance with industry best practises.
  • Support projects across the business to provide specialist information security advice and collaborates with development teams, architects and the Information Security Manager to embed a risk-based approach and ensure security requirements are captured and implemented appropriately.
  • Contribute to the identification, classification and mitigation of business and operational risks.
  • Participate in incident response processes as well as incident response planning and management of security incidents and risk events to protect information and IT assets.
  • Participate in the deployment and ongoing management of security technologies

Some key skills + experience you’ll need

  • Good knowledge and experience in the areas of vulnerability management, risk assessments and vulnerability mitigation
  • Extensive experience and understanding of Security Analysis toolkits, defensive technologies and other security systems e.g. SIEM, Vulnerability scanners, WAF, IDS/IPS, Firewalls, IAM, patch management, Antivirus
  • Strong understanding of network security, preferably in a Cloud environment
  • Exposure to agenda for Operational Risk Committee/Board
  • Excellent communication, documentation, organisational and interpersonal skills.
  • Threat Intelligence
  • Performing and remediating vulnerability assessments

What we can offer you

Because we know how important learning is, we provide the Tech team with online training and time set aside to complete course work, guilds sessions, hackathons and learning groups. On top of this, we offer plenty of fun stuff - staff discount, birthday vouchers, soft/hot drinks on tap, regular Friday drinks and of course our renowned Christmas and Summer parties. As the home of thoughtful gifts, ‘thoughtful’ is our middle name so we also love a surprise or two… (but that’s enough on that for now!)

Our perks

It’s important to us that our people are well looked after, which is why we offer everyone BUPA healthcare, life insurance and a pension plan. Because having a break is important for your physical and mental wellbeing, our holiday allowance is 25 days (plus bank holidays) AND your entitlement will increase an extra day for every 2 years you spend with us.