About The RoleTeam – Information Security - Risk and GovernanceWorking Pattern - Hybrid – 2 days per week in the Vitality Bournemouth Office. Full time, 35 hours per week. We are happy to discuss flexible working! Top 3 skills needed for this role:

A keen learner.
Experience working in a Cyber Security role.
Good verbal and written communication skills.

What this role is all about:As an Information Security Analyst, you will form part of an expanding information security team. You will be responsible for ensuring that information assets are adequately protected and that appropriate controls and mitigating actions are in place to manage identified information security risks. You will protect Vitality and its member’s data; work with stakeholders to ensure appropriate controls are in place.Key Actions

Provide professional advice and consultancy to Vitality business areas on Information Security best practice.
Assist in the development, maintenance and improvement of the Information Security Management System (ISMS), so that certification to ISO27001 is maintained.
Undertake internal audits based on ISO27001 requirements.
Identify and assess information security risks and define appropriate mitigating controls. Carry out risk assessments as required of business processes and systems and projects.
Mature the Data Loss Prevention and Access Management capabilities within Vitality.
Contribute to the continuous improvement of Vitality’s Information Security posture.
Engagement with project managers to ensure risks are identified and are being addressed through the SDLC.
Define, implement and maintain information security policies, standards, procedures and processes.
Undertake security due diligence on third party suppliers including site visits as required.
Contribute to the development of information security training and awareness activities.
Support audit efforts related to information security.
Participate in the management of information security incidents.

What do you need to thrive?

A professional certification such as CISSP/CISA/CRISC or the wiliness to undertake self-study to achieve one.
Experience working in an Information Security role.
Excellent understanding of Information Security principles, data protection and regulatory compliance.
Problem definition and solution identification.
Demonstrated ability to identify and implement process improvements.
Excellent verbal and written communication skills; ability to articulate technical knowledge to non-technical audience.
Experience in performing risk assessments and business impact analysis.
Experience of working with projects throughout the SDLC.
Experience of developing and implementing information security policies and procedures.
Knowledge and experience of ISO27001/2, PCI DSS and other industry frameworks.
Ability to conduct internal audits and write associated audit reports.
Appropriate level of technical knowledge.
Experience of information security monitoring tools (e.g. Mail Marshal / Websense / McAfee / Splunk etc).
Sound understanding of security standards, data protection and regulatory compliance (e.g. Financial Conduct Authority and Information Commissioners Office).

So, what’s in it for you?

Bonus Schemes – A bonus that regularly rewards you for your performance
A pension of up to 12%– We will match your contributions up to 6% of your salary
Our award-winning Vitality health insurance – With its own set of rewards and benefits
Life Assurance – Four times annual salary

These are just some of the many perks that we offer! To view the extensive range of benefits we offer, please visit our careers page. Fantastic Benefits. Exciting rewards. Great career opportunities!If you are successful in your application and join us at Vitality, this is our promise to you, we will:

Help you to be the healthiest you’ve ever been.
Create an environment that embraces you as you are and enables you to be your best self.
Give you flexibility on how, where and when you work.
Help you advance your career by playing you to your strengths.
Give you a voice to help our business grow and make Vitality a great place to be.
Give you the space to try, fail and learn.
Provide a healthy balance of challenge and support.
Recognise and reward you with a competitive salary and amazing benefits.
Be there for you when you need us.
Provide opportunities for you to be a force for good in society.

We commit to all these things because we want you to feel that you belong, and are supported to be happy and healthy.About The CompanyWe're really excited to announce that we have recently been awarded "Top 10 Best Places To Work" in The Sunday Times Awards 2024!Vitality is a multi-award-winning UK insurance brand, here to make the world a healthier, happier place.Diversity & InclusionWe’re committed to diversity and inclusion because it’s good for our employees, for our business, and for society. To learn more please visit our Careers page.Vitality’s approach to sustainabilityVitality is a business that drives positive change. We reward people for making and sustaining healthier choices. But healthy people also need a healthy environment. To learn more please visit our Careers page. If we are fortunate in receiving a high volume of quality applications we may need to close this vacancy early.

Information Security Analyst

Vetting Officer

Project Manager

Trainee Project Manager