Information Security Analyst (Fixed Term Contract)

An inclusive work environment is an empowering one. At Cutover, we lead with empathy and enable others to succeed through curiosity, kindness, and self-expression.

Location: London or Remote UK

Choose your preferred work setup – whether it's fully remote or a hybrid model, with the flexibility to work from home or our London office. We would like you to be able to commute to our London office for onsite audits if necessary.

Cutover’s Collaborative Automation SaaS platform enables enterprises to simplify complexity, streamline work, and increase visibility. Cutover’s automated runbooks connect teams, technology, and systems, increasing efficiency and reducing risk in IT disaster and cyber recovery, cloud migration, release management, and technology implementation. Cutover is trusted by world-leading institutions, including the three largest US banks and three of the world’s five largest investment banks.

The Cutover Information Security Team is looking for an Security Compliance Analyst on a 14-16 month fixed term contract covering maternity leave. We are a small dynamic team, offering plenty of opportunities to take ownership and make a real difference to our growing organisation. This position is ideal for someone at the beginning of their career who wants to dive deep into the world of information security, governance and compliance.

This hands-on role will specialise in maintaining and advancing our governance and compliance initiatives. We are proud to have held the ISO27001 certification for a number of years and also participate in an SOC 2 Type 2 audit annually. Risk analysis shapes the foundation of many decisions throughout the whole business, and this role will look to educate and support wider internal stakeholders on organisational risk, supplier risk, security risk and best paths to mitigation. This role will serve as an important hands-on information security resource and subject matter expert for governance, risk and compliance, including audits, current and prospective questionnaires and maintaining policy documentation. 

What You'll Learn and Do

• Specialize in maintaining and advancing our governance and compliance initiatives.
• Gain practical experience with ISO 27001 and SOC 2 Type 2 audits
• Perform risk analysis to shape foundational business decisions, educating and supporting internal stakeholders on organizational, supplier, and security risks, as well as best mitigation practices.
• Serve as an essential hands-on information security resource and subject matter expert for governance, risk, and compliance, including audits, questionnaires, and policy documentation.
• Collaborate with other departments on security incident control and recovery

What we'd like you to bring to the table for this role...

• 2 years of experience in governance, risk, and compliance with a genuine passion for information security, privacy, and data confidentiality.
• Ability to lead internal and external audits, ensuring adherence to ISO/IEC 27001:2022 standards (must have prior hands-on experience with at least one ISO audit)
• Experience in responding to and participating in prospective and current client questionnaires and audits.
• Proficiency in performing risk assessments, including documenting security reviews, evaluating potential internal and external threats, identifying mitigating controls, and determining overall risk to information and technology assets.
• Experience in conducting third-party supplier assessments and due diligence checks.
• Ability to provide guidance for the development, maintenance, communication, and enforcement of corporate information security policies, standards, and procedures.
• Strong collaboration skills to work with other departments, such as IT, to control, remediate, and recover in the event of a security incident.

The good stuff:

• 25 days of PTO per year + public holidays (pro rata for contract duration)
• 3 volunteer days to use for any charitable/voluntary cause you would like.
• A top-tier private health insurance package.
• Aviva pension scheme
• Work from home stipends
• A personal learning and development budget through Learnerbly. You’ll be supported in your quest for knowledge, whatever that looks like to you.
• Employee Referral Scheme.
• Safeguarding the mental health of our teams is paramount for us. If you’d like to, then you’ll be able to avail yourself of multiple Cutover mental health initiatives, from fully subsidized therapy sessions to subscriptions to leading wellbeing platforms.

Target compensation package: £45,000 - £55,000 annually (pro rata for contract duration)

The final offer may vary from the target compensation package, taking into consideration factors such as your experience level and skill set.  If we aren't aligned on salary at this stage, we’d still love to hear from you to better understand if there are more suitable opportunities at Cutover.

Diversity Statement - Empowering Our Teams

We encourage our team to bring their authentic selves to work, which we have found has strengthened workplace relationships and fostered a genuine sense of community - especially during the past two years of the pandemic. 

If you are excited by this role, we invite you to apply! Even if your profile doesn’t check all the boxes, please don't simply scroll past! We recognize that talent lies everywhere and that some demographic groups are more likely to apply for a "stretch role" than others. We are always open to different perspectives and professional backgrounds to keep Cutover's culture evolving and to ensure that we never stop learning. 

Cutover is an Equal Opportunity Employer. Maintaining an equitable hiring process is imperative to our mission. All applicants are considered without regard to race, ethnicity, national origin, religion, sex, gender identity, sexual orientation, age, mental or physical disability, marital status, protected veteran or parental status.

Learn more about Life at Cutover, our Guiding Principles, and our latest news on Twitter and LinkedIn