Crown Agents Bank
Banking
InformationSecurityAnalyst
“Information Security Analyst at Crown Agents Bank. Skills: Information security governance, Regulatory compliance, Security operations, Vendor risk management, Security awareness. Administer ISGF and ORC meeting logistics including preparing agendas, collating papers, recording minutes and tracking actions to completion.. Maintain the CISO organisational RACI, ensuring it is kept current as team structure and responsibilities evolve.”
Industry & Context.
Analytical component is beneficial but not required.
What They're Looking For.
Must Have
Degree-level education or a subject with an information security, technology or analytical component is beneficial but not required., An interest in pursuing professional security qualifications (e. g. CompTIA Security+, CISMP, BCS Information Security) is expected., 0–2 years of professional prior exposure to an information security, compliance, risk or technology environment is advantageous but not essential., organisational skills with the ability to manage multiple parallel tasks, track deadlines and maintain accurate records., Proficient in Microsoft 365 (Word, Excel, PowerPoint, SharePoint), Clear written communication skills, with the ability to produce well-structured reports and documentation., Attentive to detail with a methodical approach to evidence gathering, record-keeping and process execution., Genuine interest in information security as a career, with a desire to grow within the CISO function over time.
Nice to Have
familiarity with security or GRC tooling such as Vanta or RiskConnect is a plus.
What You'll Do.
Administer ISGF and ORC meeting logistics including preparing agendas
recording minutes and tracking actions to completion.
Maintain the CISO organisational RACI
ensuring it is kept current as team structure and responsibilities evolve.
Compile and distribute the master CISO security reporting pack
collating inputs from all service areas into a consistent
accurate and timely governance view.
Maintain and update technology roadmap tracking documents
collating status updates and producing progress summaries for review.
Support preparation of Board
ExCo and governance forum presentations and papers.
Manage the security policies and standards library
tracking review schedules
chasing approvals and maintaining version control.
Maintain the ISO 27001 evidence library
coordinating evidence collection cycles and supporting internal and external audit preparation.
Administer DORA compliance tracking
maintaining registers and flagging gaps for senior review.
Support NYDFS Part 500 compliance activities including maintaining evidence packs and tracking annual certification requirements.
Own Cyber Essentials and SWIFT CSP evidence gathering and submission processes.
Administer the Risk & Controls Register within Vanta and RiskConnect
keeping control status and evidence current.
Support Financial Audit and Internal Audit activities through evidence provision
scheduling and action tracking.
Administer the annual mandatory security training programme
tracking completion rates
chasing non-completions and producing completion reports.
Execute phishing simulation campaigns
producing reports and coordinating follow-up training for at-risk users.
Own the security awareness communications calendar
producing and distributing content for firm-wide awareness campaigns.
Coordinate Executive & Board training logistics
scheduling and record-keeping.
Coordinate specialist security training activities
attendance tracking and training records.
Administer vendor onboarding activities
running security questionnaire processes
tracking responses and maintaining the vendor register.
Support vendor annual review cycles
coordinating evidence collection
scheduling review meetings and updating vendor risk records.
Assist the Operational Security Engineer with routine security operations tasks including ticket handling
tool administration and evidence gathering.
Contribute to automation of routine tasks
document and test repeatable processes suitable for scripting or workflow tooling.
How You'll Work.
Team & Collaboration
Working closely with members of the CISO team; Support preparation of Board, ExCo and governance forum presentations and papers.; Assist the Operational Security Engineer with routine security operations tasks
Communication Scope
Clear written communication skills, with the ability to produce well-structured reports and documentation.
Process & Methodology
organisational skills with the ability to manage multiple parallel tasks, track deadlines and maintain accurate records.
Applying for this Information Security Analyst role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on SmartRecruiters
- SmartRecruiters often includes a video screening step — check camera and mic permissions.
- Link your GitHub or portfolio directly in the profile section for technical roles.
- Applications may be reviewed by AI scoring before reaching a recruiter — use keywords from the job description.
ANONYMOUS · UNFILTERED
What do employees actually say about Crown Agents Bank?
Real rants from real employees. Read before you apply.