Information Security Business Analyst

Summary

Join Pepperstone's technology team as an Information Security Business Analyst and contribute to establishing robust IT and IT Security processes. Collaborate with the Head of IT Security and other teams to develop and implement governance and management programs. Conduct risk assessments, create documentation, and engage with various departments to promote a security-focused culture. This role requires at least 5 years of relevant experience, strong analytical and communication skills, and expertise in IT risk management. Pepperstone offers a competitive salary, flexible work arrangements, ongoing professional development, and comprehensive benefits.

Requirements

• At least 5 years of relevant experience in a comparable position
• Proven analytical abilities to design and implement programs and processes effectively
• Excellent communication skills to engage seamlessly with various departments
• Demonstrated experience in IT risk management and/or conducting IT/InfoSec audits
• Familiarity with visualization tools for crafting infographics, block schemas, diagrams, and process flows
• In-depth experience in architectural reviews, process design, and change management practices
• Outstanding analytical capability to perform complex cyber risk assessments and business impact analyses

Responsibilities

• Collaborate with the Head of IT Security, the IT department, and the IT Security team to develop and sustain robust IT/Security governance and management programs
• Conduct insightful analyses and design Key Risk Indicators (KRIs) to effectively monitor and manage IT risks
• Execute comprehensive risk assessments to uncover potential vulnerabilities, inefficiencies, and threats within the company's processes
• Create and maintain internal documentation that outlines processes, procedures, standards, and guidelines
• Engage with various departments to facilitate the implementation of programs and processes, promoting a culture centered around security
• Play an active role in fostering and advancing a culture of security and resilience throughout the organization

Preferred Qualifications

• Knowledge of ISO 22301 and an understanding of the DORA initiative is a plus
• Familiarity with COBIT and ITIL frameworks or similar methodologies would be advantageous
• Certifications in Information Security and IT management/governance (such as CISA, CRISK, CISSP, Security+, etc.) are a plus
• Skills in automation, including scripting and Python, along with proficiency in SQL and Excel will be beneficial
• A strong commitment to ongoing learning and personal development is essential
• A Bachelor’s degree in Computer Science, IT Security, or a related area will be beneficial

Benefits

• Competitive salary structure including company bonus scheme
• Genuinely collaborative and friendly culture
• Flexible and hybrid working
• Remote working option - work from anywhere for up to 6 weeks per year
• Ongoing personal development & learning opportunities
• 3 paid volunteering days per year & Workplace Giving Program
• Periodic recognition and reward programs for outstanding performance and achievements
• Frequent events and celebrations
• Comprehensive medical insurance with coverage for your healthcare needs
• Pension fund
• Employee Assistance Program & Wellbeing Initiatives
• Convenient and cozy office located near the Limassol Municipal Garden