Information Security Analyst I

Job Scope: To manage all RX security assessments and play a key part in ensuring RX's security compliance optimization. Monitor assessments while ensuring that Reed Exhibitions internal systems are compliant with RELX and industry standards. Proactively manage the third-party risk assessments, compliance evidence gathering of their IT services, infrastructure, applications and relevant services against their Security policies and related frameworks. Training and development will be provided in all areas of the role as required.

Key Responsibilities:

• Security Assessment Management

• Manage vendor assessments to ensure that all evidence is appropriately processed and approved.

• Manage and maintain the RX domain of the RELX TPSAQ portal.

• Manage and maintain the Forward Calendar of assessment priorities.

• Manage the interface between RX security assessment processes and that of vendors.

• Supporting RX teams in day-to-day security assessment issues.

• BI Reporting.

• Team documentation Management.

• Team SLAs and KPI management.

• Deliver high quality risk-based reviews which identify and address root causes of issues arising, whilst mitigating emerging risk.

• Building and fostering close relationships with RX ISMs.

• Work collaboratively within all business areas and key stakeholders to ensure that the review scope and approach is appropriate and proactive.

• Escalation of high impact security issues to Security Compliance Manager.

• Analyze controls to ensure that specific RELX security and compliance requirements are met through evidence provided via SAQ processes.

• Working in a small team with opportunities to take on additional related responsibilities.

Ideal candidate profile:

Technical Skills:

• Bachelor's Degree holder.

• IT, compliance and/or information security background

• Ability to work across all levels of seniority within business teams to drive a working partnership.

• Must have strong analytical and critical thinking skills.

• Understanding of industry standards for IT security e.g. ISO27001/2, SOC 2, PCI DSS

• Basic understanding of IT security applications e.g. firewalls, intrusion detection, virus protection, etc.

• Basic understanding of IT security testing and vulnerability management

• Understanding Service Level Management

• Desired understanding of OneTrust portal

• Desired Security or IT certification or equivalent (CompTIA Security+ or equivalent)

Personal Skills:

Ability to work across all levels of seniority within organization and suppliers to drive a working partnership.

Good communications skills at all levels both oral and written.

Good interpersonal skills.

• Ability to produce effective influence and persuade arguments in support of security assessment process goals.

• A highly driven and self-motivated individual.

We are committed to providing a fair and accessible hiring process. If you have a disability or other need that requires accommodation or adjustment, please let us know by completing our

Applicant Request Support Form

or please contact

Criminals may pose as recruiters asking for money or personal information. We never request money or banking details from job applicants. Learn more about spotting and avoiding scams

here

.

Please read our

Candidate Privacy Policy

.

We are an equal opportunity employer: qualified applicants are considered for and treated during employment without regard to race, color, creed, religion, sex, national origin, citizenship status, disability status, protected veteran status, age, marital status, sexual orientation, gender identity, genetic information, or any other characteristic protected by law.

USA Job Seekers:

EEO Know Your Rights

.