Expire bientôt BURBERRY

Information Security Risk Analyst

  • Leeds (West Yorkshire)
  • Développement informatique

Description de l'offre


Founded in 1856, Burberry today remains quintessentially British, with outerwear at its core. Digital luxury positioning and intensive focus on design innovation, quality and heritage icons ensure continued brand purity and relevance globally across genders and generations. Burberry believes that in order to be a great brand it must also be a great company and constantly leverages the energy of its compassionate and creative thinking culture to continually innovate and drive the brand forward. Headquartered in London, Burberry is a design, marketing and retail led business with a global reputation for innovative product design, digital marketing initiatives and dynamic retail strategies.


The Information Security Risk Analyst will be working in the Information Security Team supporting the business and IT to identify and thereafter manage information security risks both internally and via third parties. The role includes supporting the execution of a variety of regular and ad hoc assessments and facilitating the creation and implementation of procedures, policies, and controls. The role will also involve regularly interfacing with business function and IT stakeholders, internal and external auditors, and being involved in other compliance initiatives including providing input into audits upon request.


· Collaborate with stakeholders to identify, assess and treat internal and third party information risks; tracking the risks and the associated controls
· Assist the Information Security Risk Manager in the management, development, and maintenance of the information risk register and information asset register, and support continuous improvement and maturation of information security risk management processes
· Assist IT teams in defining and executing action plans to implement controls
· Document and report on compliance with the agreed controls on a regular basis
· Support implementation of an overall control framework (comprehensive control set) in IT e.g. ISO27001
· Support internal and external audits to ensure their success
· Ensure maintenance of a practical and comprehensive Risk Assessment methodology
· Monitor and track assurance, and ensure the retention of accurate and complete records
· Support the Information Security Risk Manager in conducting risk and compliance audits, and compile necessary documentation upon audit completion
· Assist the Information Security Risk Manager to direct compliance issues to appropriate resources for investigation and resolution


· Information Risk Management experience ideally in Retail
· Industry Knowledge:ISO 27000 series of standards, NIST Cybersecurity Framework, CIS Critical Security Controls
· Familiarity with Security Controls:
· Understanding of controls to protect applications and infrastructure technologies including Data Loss Prevention, Advanced Threat Detection and Prevention, Cloud and Mobile Computing
· Information Security Expertise
· Experience in Information Security, IT Audit, and Supplier Security Assessments
· Knowledge of security related products and Information Security Management Systems
· Knowledge of information security and risk strategies
· Ability to collaborate with and influence stakeholders
· Understanding of IT Risk
· Ability to identify IT risk implications from IT operations
· Ability to categorise IT risk and to determine the best course of action to handle that category of IT risk


Burberry is an Equal Opportunities Employer and as such, treats all applications equally and recruits purely on the basis of skills and experience.

Posting Notes: United Kingdom|| Not Applicable|| Leeds|| Information Technology|| IT - Information Security|| n/a||