Information Security Governance Analyst

Equiniti is a leading international provider of shareholder, pension, remediation, and credit technology. With over 6000 employees, it supports 37 million people in 120 countries.

EQ's vision is to be the leading global share registrar, offering complementary services to its client base and our values set the core foundations to our success. We are TRUSTED to deliver on our commitments, COMMERCIAL in building long term value, COLLABORATIVE in our approach and we IMPROVE by continually enhancing our skills and services. There has never been a better time to join EQ.

Function Overview

EQ Group holds and processes a significant volume of sensitive information, mainly personal, relating to our clients' employees, pension members and other shareholders. We operate a framework of information and cyber security controls that allows us to achieve and maintain the right level of security.

The Chief Information Security Officer (CISO) provides leadership, sets strategy and direction, establishes Policy, sponsors initiatives and mandates action to achieve this desired level of security. The Group Information Security team works under the CISO's direction to define the security controls, supervise their implementation and operation, and operate specific controls, especially regarding risk assessment and security monitoring. EQ publishes a Security Policy, based on the ISO27001:2022 international standard, to define the high-level controls and associated requirements. The Group also maintains independent certification against ISO27001 to provide assurance to its clients and management on the achieved level of control.

The framework provides for the following specialist teams within the Group Information Security (GIS) function:

• Governance
• Risk Management
• Client Management
• Assurance
• Security Architecture & Engineering
• Security Operations

The Information Security Governance team provides leadership in the establishment of clear objectives and rules governing the security of the Group's business operations, and a high-level of awareness and understanding of the need for security and secure behaviours amongst all staff.

Role Summary

The Information Security Governance Analyst will work within a small team delivering a range of security Governance services. They will report to the Head of Information Security Governance and share the workload and activities of the Information Security Governance team, consisting of the Head and up to 4 other staff.

Core Duties/Responsibilities

Policies & Standards

• Assist in developing and maintaining a complete set of Information Security policies and standards applicable to all the Company's business units, by continually monitoring the Information Security controls and technical landscape.

Security Awareness

• Assist in the development of materials to support education and awareness of EQ staff in secure behaviours and practices.
• Use of industry tools to deploy phishing simulations and security training campaigns to positively influence employee behaviour.

Metrics & Reporting

• Assist in the production of regular reports of the measures of the Company's state and quality of security for management and other stakeholders, emphasising trends and highlighting exceptions from norms and root causes as appropriate.

Project Management

• Assist in a range of Information Security Governance project initiatives. In 2024 there is a focus on Active Directory and implementation of a security training platform.

Skills, Knowledge & Experience

The Information Security Governance Analyst will have relevant experience in either an industry or consulting role and will ideally have a technology or Information Security background or will have worked in an IT environment.

• Security policy and standards development
• Security risk analysis and assessment
• International standards for control, such as CoBIT, ISO 2700x, NIST CSF, etc.
• Broad general knowledge of good Information Security practice
• Governance, Risk & Compliance (GRC) tools and methods
• Excellent oral and written communication skills
• Excellent presentational skills
• General, all-round hands-on technical skills, such as scripting (e.g. python), SQL, Excel macros, etc.
• Experience of delivering against similar accountabilities with global impact in an organisation of similar scale and complexity as EQ
• Ability and motivation to work with parties inside and outside the security community through a cooperative, interactive, trustful and respectful approach

What We Offer

Save For Your Future - Equiniti Pension Plan; matched contributions up to 10%

All Employee Long Term Incentive Plan (LTIP) - Gives all EQ Colleagues the opportunity to benefit if the current owners sell the company for a profit

Health and Wellbeing - Employee Assistance Programme: counselling, legal & wellbeing support for colleagues and their households. Life assurance cover at 4x salary

Employee discounts - Discounts and cashback at your favourite high street stores through EQ Wins Platform

Flexible Benefits - Ability to purchase a wide variety of benefits through our flex plan; gadgets, travel insurance, will writing, holiday trading etc.

Time Off - 28 days holiday + bank holidays. 2 volunteer days

Winning together - Equiniti ICON award vouchers; recognising the individuals going above and beyond

We are committed to equality of opportunity for all staff and applications from individuals are encouraged regardless of age, disability, sex, gender reassignment, sexual orientation, pregnancy and maternity, race, religion or belief and marriage and civil partnerships.

Please note any offer of employment is subject to satisfactory pre-employment screening checks. These consist of 5 year activity & GAP verification, DBS or Access NI, Credit, Sanctions & CIFAS checks