Information Security - Risk Analyst
Salary: Competitive Plus Benefits
Location: Coventry Store Support Centre - Ansty Park and Home, Coventry, CV7 9RD
Contract type: Permanent
Business area: Sainsbury's Tech
Closing date: 21 November 2024
Requisition ID: 260603
We’d all like amazing work to do, and real work-life balance. That’s waiting for you at Sainsbury’s. Think about the scale it takes for us to feed the nation. The level of data, transactions and variety it involves. Then you’ll realise that ours is a modern software engineering environment because it has to be. We’ve made serious investment into a Tech Academy and into setting standards and principles. We iterate, learn, experiment and push ways of working such as Agile, Scrum and XP. So you can look forward to awesome opportunities in everything from AI to reusable tech.
Division/Dept.
Corporate Services/Data Governance Information Security
Location
Hybrid working with base location of Coventry
Reporting to
Risk Manager
In a nutshell
The risk team is instrumental in managing and reducing threats to Sainsbury’s data and systems, ensuring minimised exposure. You will support the development and operational management of risk, ensuring the business operates within internal policies, standards and risk appetite. You will ensure that all risks, are recorded, assessed, monitored, and have appropriate mitigative actions in place. You will also produce reporting to a high standard, ensuring stakeholders including senior management, are fully engaged.
What you need to do
- Ensure all appropriate risks are recorded, assessed and regularly reviewed
- Work with the risk team and stakeholders to identify and highlight risks that could significantly affect the business and escalate them appropriately
- Work collaboratively with stakeholders to identify mitigating actions and remediation plans
- Track and report progress of mitigating actions and support risk owners with remediation plans
- Produce accurate risk reports and metrics for senior management and governance forums
- Proactively identify and interpret changes in regulatory requirements, legislation, and industry best practice
- Assist in creating and delivering the risk roadmap
- Continuously refine and improve risk methodologies and processes ensuring documentation is kept up to date
- Assist with creating and delivering risk training for colleagues and help to raise the profile risk management
- Support the creation of internal security policy
What you need to know and show
- Risk management experience and working within a risk management framework
- Demonstrable ability to drive risk remediation plans and work with risk owners to help meet key risk mitigation deadlines
- Good knowledge and passion for information security with an eye for detail
- Familiar with information security controls, frameworks and tooling
- Be able to proactively identify and own any issues and follow through to resolve them
- Excellent stakeholder management skills, be able to work collaboratively with a range of people at all levels, both technical and operational
- Excellent communication skills, written and verbal
- Ability to prioritise own workload and deliver quality results on time to budget
- The ability to think methodically and logically
- Knowledge of NIST and ISO27001 desirable
- Qualifications such as CRISC, CISSP and the CompTIA+ suite desirable but not essential
Support we will provide
- Your line manager will provide support and guidance
- Access to the DGIS teams who have a wide array of skills and knowledge
- Extensive support and training materials available
- Other resources as required
We are committed to being a truly inclusive retailer, so you’ll be welcomed whoever you are and wherever you work. Around here, there’s always the chance to try something new - whether that’s as part of an evolving team or somewhere else across the business - and we take development seriously and promise to support you. We also recognise and celebrate colleagues when they go the extra mile and, where possible, offer flexible working. When you join our team, we’ll also offer you an amazing range of benefits. Here are some of them: Moments that matter are as important to us as they are to you which is why we give up to 26 weeks’ pay for maternity or adoption leave and up to 4 weeks’ pay for paternity leave.
Starting off with colleague discount, you'll be able to get 10% off at Sainsbury's, Argos, TU and Habitat after 4 weeks. This increases to 15% off at Sainsbury’s every Friday and Saturday and 15% off at Argos every pay day. We've also got you covered for your future with our pensions scheme and life cover. You'll also be able to share in our success as you may be eligible for a performance-related bonus of up to 20% of salary, depending on how we perform.
Your wellbeing is important to us too. You'll receive an annual holiday allowance, and you can buy additional holiday. We also offer other benefits that will help your money go further such as season ticket loans, interest free car loan of up to £10k, cycle to work scheme, health cash plans, pay advance (where you can access some of your pay before pay day) as well access to a great range of discounts from hundreds of other retailers. And if you ever need it there is also an Employee Assistance Programme, you will also be eligible for private healthcare too.
Please see www.sainsburys.jobs for a range of our benefits (note, length of service and eligibility criteria may apply).