Careers

Locations

Remote, United Kingdom

Job Term

Full-Time

Company Website

In your role as Senior Security Compliance Analyst, you will be creating and implementing security policies and procedures which improve our posture in alignment with industry best practice and internationally recognised compliance standards.

Coordinating with and supporting our Legal, Risk & Compliance team in understanding and quantifying security risk, you’ll be responding to third-party requests for security information and performing security assessments of our suppliers, their products and services.

You’ll also coordinate our technical responses to and submissions for our compliance certifications such as PCI-DSS and SOC2, etc. and will drive our security awareness programme, promoting security within Featurespace and collaborating with our customers and industry partners to develop the maturity and standing of security within our industry.

This role can be based remotely across the UK, with the successful candidate coming in to the Cambridge office around once a quarter, or can be based in either our Cambridge or London offices.

 

Day to Day

 
  • Develop security policy, standards and guidelines
  • Maintain a security risk register and assist with internal and external audits relating to security
  • Generate reports for both technical and non-technical staff and stakeholders
  • Conduct security risk assessments, business impact analyses and recommend appropriate control improvements
  • Keep up to date with the latest security and technology developments
  • Research / evaluate emerging security threats and ways to mitigate them
  • Ensure all processes and controls that fall within your area of responsibility are operating effectively and are correctly evidenced
  • Create, maintain and deliver security awareness training for colleagues

About you

 
 

Must haves

  • Strong experience working with and implementing successfully a range of security management and control frameworks such as PCI-DSS, SOC 2 and ISO 27000
  • Strong experience of security risk management and associated practices
  • Broad knowledge / understanding of basic technical security controls / control frameworks including, but not limited to, areas such as network security, endpoint security and identity and access management, etc.
  • Knowledge of common application security vulnerabilities / risk factors, e.g., OWASP Top 10, etc.
  • Experience of ITIL standards or similar IT operations best practice

 

Great to haves

  • Experience / knowledge of basic Cloud Security concepts and standards
  • Experience / knowledge of IT system administration across Windows, Linux and Mac environments
 

Equal Opportunities

 

Here at Featurespace we are committed to being a place of equality, inclusion and respect to provide a safe environment for you to bring your authentic self to work. We know that we gain as much strength from our differences as we do our similarities. We value diversity and are dedicated to listening and learning from each other to build and maintain a positive and productive culture. We appreciate this will be an ever-evolving focus for the business to ensure everyone feels supported and has a sense of belonging.

Apply now