Information Security Analyst
Recruiter
Listed on
Location
Salary/Rate
Salary Notes
Type
Start Date
This job has now expired please search on the home page to find live IT Jobs.
Role Objective
Seadrill has a vacancy for an Information Security Analyst to join the information security team of Seadrill, who support Seadrill’s business in information security. The role of the Information Security Analyst is to provide support to day-to-day security operations, deal with any security related incidents and continually improve our security controls.
Principle accountabilities and Responsibilities
Developing Capability and Performance:
- Provide the incident management function for all operational security issues on a day-to-day basis.
- Act as the primary risk assessor for all IT projects, and advice on appropriate controls.
- Assessing and assisting in the creation, testing and implementing disaster recovery and business continuity plans.
- Manage out-sourced security service providers.
- Management of the penetration test and remediation process.
- Analyze external threats and incorporate appropriate controls into the Digital Security framework and update information security directives and standards.
- Assist with information security awareness initiatives including conducting user presentations, conference calls and WebEx’s'.
- Liaise with the legal department and Data Privacy champion to ensure appropriate external requirements are identified, understood, adopted, and maintained.
- Annually conducts a security maturity assessment (or security posture) for the account.
- Coach junior member of the team.
Essentials
Background and Skills:
- At least 2-3 years' experience in an information security role and demonstrate a clear understanding of security related issues.
- A genuine interest in the information security.
- Highly experienced in assessing / auditing level of risk, conducting risk assessments.
- Good understanding of IT with experience in security controls design and operation for operating system, database, network and applications.
- Self-motivated and the ability to work under own initiative, with the ability to work individually and as part of a team.
- Knowledge of ISO/IEC:27001 standard.
- Knowledge of PCI DSS, Sarbanes Oxley, Safe Harbor, and Data Privacy requirements.
- Strong ownership of tasks and issues through to resolution (must demonstrate tenacity and persistence).
- Excellent communication skills, relationship building and interpersonal skills.
- Strong analytical skills.
- Able to multi-task and prioritise workload and a strong capability to manage and deliver multiple engagements simultaneously.
Qualifications:
- CISSP - Certified Information Systems Security Professional
- Degree or equivalent experience in computer science, telecommunications, networking, engineering or another computer-related field.
Technical Knowledge:
- Good understanding of network technologies (including Firewall rules).
- General knowledge of Windows related security controls.
- General understanding of application risks and controls.
- General understanding of malware types, delivery mechanisms and detection tools.
Desirables
Qualifications:
- BSc or MSc degree in Information Security.
- ISO27001 - Information Security Management System - Lead Auditor.
- CISM - Certified Information Security Manager.
- CISA - Certified Information Security Auditor.
- Prince2 or MSP Certification.
- ITIL Foundation or higher certification.
- CompTIA Networking +
Background and Skills:
- Good understanding of project delivery frameworks.
- Experience with vendor management.
- Project management skills.
- Experience with the implementation and support of operational security management processes.
To apply for this role please click the APPLY button.
