Group Information Security Risk Analyst

12 Hours ago • 6-8 Years • Cyber Security

About the job

Summary

As the Group Information Security Risk Analyst, you'll identify and assess IT risks related to cyber and information security, providing risk scores and evaluating security controls. You'll ensure risk treatment aligns with the organization's risk appetite, communicate with teams to manage risk escalation, and create reports on lessons learned. Responsibilities include validating operational activities, assisting in reducing single points of failure, and supporting succession planning. You'll also gather evidence for audits and compliance, demonstrating risk mitigation actions and process maturity.
Must have:
  • Degree in IT/InfoSec/Cybersecurity or equivalent experience
  • Experience managing IT security tools and regulatory requirements (ISO 27001, PCI-DSS, GDPR)
  • Risk assessment, security control evaluation, and remediation planning
  • Strong stakeholder management and influence skills
Good to have:
  • Industry-recognized qualifications (CISSP, CISM, ISO 27001 Lead Implementer)
  • Knowledge of cloud/hybrid environments and security controls
  • Experience developing/managing security policies, processes, and procedures
  • Knowledge of security architecture frameworks (TOGAF, SABSA)
  • Experience with different legislation in various countries
Perks:
  • Hybrid working
  • Colleague support networks
  • Menopause support
  • Weekly PepTalks
  • Development opportunities
  • Leadership training
  • Industry certifications
  • International exposure
  • Pensions
  • Bonus schemes
  • Private medical insurance
  • Life insurance
Not hearing back from companies?
Unlock the secrets to a successful job application and accelerate your journey to your next opportunity.

Company Description

The Rank Group are known through our iconic brands; Mecca Bingo and Grosvenor Casinos.

We employ almost 8,000 people across our brands, in roles ranging from Casino Croupiers, Poker Dealers, Chefs and Bingo Club Callers, through to specialists in Marketing, Property, Finance, Law and Human Resources and many more.

We are a multi-channel business, operating across our retail (club and casino venues), online and mobile. We are always changing and always innovating.

Job Description

As the Group Information Security Risk Analyst, you will identify and assess Information Technology risks related to cyber and information security, providing risk scores to determine severity, impact, and proximity.

Evaluate and test security controls and use cases annually to maintain an effective security posture aligned with current threats as well as gather evidence for audits and compliance to demonstrate risk mitigation actions and process maturity.

You will be validating operational activities to ensure risk treatment aligns with the organisation's risk appetite and communicating with relevant teams to manage risk activation/escalation and closure

Creating reports on lessons learned, risk proximity, and treatment actions. As well as assisting in other operational activities to reduce single points of failure and support succession planning within the team.

Qualifications

You will have;

  • A degree in IT, Information Security, Cyber Security or equivalent experience; industry-recognised qualifications (e.g., CISSP, CISM, ISO 27001 Lead Implementer) are desirable but not essential
  • Extensive experience in managing IT security tools and regulatory requirements (e.g., ISO 27001, PCI-DSS, GDPR). 
  • Some technical knowledge of cloud and hybrid environments, including security controls. 
  • Some proficiency in developing and managing security policies, processes, and procedures
  • Experience in risk assessment, security control evaluation, and remediation planning. 
  • Strong stakeholder management skills, including the ability to influence decision-makers and resolve issues at a senior level. 
  • Knowledge of security architecture frameworks (e.g., TOGAF, SABSA) and experience working with different legislation in various countries is advantageous but not essential. 

Additional Information

#LI-IZ1 #LI-Hybrid

Join us to unlock benefits and opportunities that will boost your career journey in a vibrant, inclusive and fulfilling work environment – so you can #BeYourself

Wellbeing@Rank is important... From hybrid working and colleague support networks to menopause support and weekly PepTalks, we’re here for you.  

We’ll also invest in your growth by providing development opportunities, leadership training and cutting-edge industry certifications so you have the tools and resources to help you work, win and grow with us. 

Immerse yourself in new cultures and gain international exposure through our global business. Collaborate with colleagues from around the globe.  

From pensions to bonus schemes, and private medical insurance to life insurance – we've got you covered. 

*Our benefits vary by brand and/or location. Please have a chat with your local Talent Acquisition specialist to find out what’s in place in your location.    

The Rank Group are committed to being an inclusive employer, ensuring that we better understand and meet the needs and requirements of our candidates and customers. 

We aim to do this by facilitating fair and equal access to our services. If you require a reasonable adjustment to be made, please reach out to let us know ahead of your interview. 

View Full Job Description

About The Company

England, United Kingdom (On-Site)

England, United Kingdom (On-Site)

England, United Kingdom (On_site)

England, United Kingdom (On-Site)

England, United Kingdom (On-Site)

England, United Kingdom (On-Site)

England, United Kingdom (On_site)

Scotland, United Kingdom (On-Site)

Gibraltar, Gibraltar (On-Site)

Plaines Wilhems District, Mauritius (On-Site)

View All Jobs

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug