Information Security Analyst
Protecting and securing our firm's information assets is of vital importance to us. It's a big job - read on to find out how we're doing it and how you can help.
So what's the job?
We're looking for an Information Security Analyst to join our Risk and Best Practice team. This is a hands-on/practical role, so you'll need to have an understanding of the current and emerging information security threat landscape, especially cybercrime, ensuring risks are identified and managed with appropriate controls and measures. A key part of the role will be to pro-actively support the management and continuous development of our Information Security Management System.
We're looking for someone with a proactive and pragmatic approach to mitigating risk. You'll need to be able to hold your own and have a good understanding of IT terminology and be a good people person with the ability to engage and influence our people across our 8 UK offices. So, as well as having technical expertise, you'll need to have practical experience of IT infrastructure as we would expect you to be working with our expert IT team, to help ensure the ongoing development and testing of procedures that provide assurance against cyber-attacks and deliver effective security.
This is a permanent job based in our Newcastle office on the Quayside which offers splendid views of the river and an equally splendid onsite Café.
What will I actually be doing day to day?
There's a lot to talk about here as this role encompasses key areas for us including our ISO 27001:2013 programme, the GDPR compliance programme, as well as Information Security policies and Risk Management. You'll be able to build strong working relationships with key stakeholders across all business areas, particularly the IT team as we mention above.
You'll provide a focal point for advice and guidance on information security related activities, recommend solutions and support the introduction of new practices, including technology recommendations for Information Security. You'll conduct audits, improve systems and controls, deal with external certification and regulatory bodies, contribute to the development of an internal awareness and training campaign, provide management reports and much more.
This is just a snapshot and we have a more comprehensive job description.
Who will I work with?
You'll report into our Internal Audit Manager, who also oversees compliance and our assurance programmes. These teams are based across Newcastle, Bristol and Plymouth and all form part of our Risk and Best Practice team headed up by our Operational Risk Director along with our General Counsel's office. Then there are our Partners, Lawyers, Directors, Managers through to Paralegals, Legal Secretaries and Support teams.
Ok so what qualifications and experience do I need?
You'll need to be a self-starter who is professional, pragmatic and diligent. A problem solver with good attention to detail, troubleshooting expertise and a solutions focussed approach. We're a fast-paced, progressive firm so you'll also need to be highly organised and able to plan effectively.
This is a challenging role, so naturally we have a 'wish list' of essential skills. Firstly, a good working knowledge of ISO 27001:2013, data protection/GDPR and Cyber Essentials. You'll have a strong knowledge of current information security threats and trends, experience of delivering training and the ability to positively influence personnel with different competencies.
Experience of project management and internal auditing will be useful, as is experience of working with an ISO 27001:2013 certified management system.
What makes it great to work here?
Womble Bond Dickinson is a full-service transatlantic law firm, created on 1 November 2017 through the combination of UK firm Bond Dickinson and US firm Womble Carlyle.
A Top 100 law firm globally and Top 20 law firm in the UK, Womble Bond Dickinson has more than 420 partners and 1,000 lawyers based across the US and UK including a significant presence in London. The firm's reach also extends to Europe where it has strategic partnerships with other law firms in Germany and France
But most of all – it's our people and culture that make it a great place to work.
So you're interested but have some Questions?
Sounds like role that you can do? Then we want to hear from you. Please follow the instructions to make a formal application – just a few contact detail questions and then upload your CV.
If you have questions about the role please do contact me Sara Casey on 0117 989 6559 (No agencies please we are an in-house recruitment team).
If this isn't the role for you (or the right time) why not connect with me on LinkedIn or follow us on Twitter (@WBD_CareersUK) to keep up to date with all of our opportunities. We also have a Facebook page (https://www.facebook.com/womblebonddickinsoncareers/)