Junior Information Security Engineer

About the Role

InfoSum is the world's leading data collaboration platform, providing solutions to the world's largest enterprises to allow collaboration across data sources and deliver richer customer experiences that prioritize consumer privacy. Our vision is to unlock data's limitless potential, by enabling the world's data to be connected but never shared. As a people-first organization, we can offer you the personal and professional flexibility needed to get the job done, grow with us, and help challenge the status quo. If you want to work with a business that encourages collaboration, and champions the idea that the sum is greater than its parts, then we want to hear from you.

About the Role

As a Junior Information Security Engineer at our SaaS-based development company, you will play a crucial role in safeguarding our information systems. This position involves extensive use of AWS and Infrastructure as Code (IaC) practices. You will monitor, identify, and respond to security incidents, conduct security audits, and implement remediation measures. A proactive approach to security, strong analytical skills, and the ability to collaborate across departments are essential. Infosum is a growing company, so the role covers a wide range of disciplines (Dev/Sec/Ops), providing a fantastic security foundation and a great way to broaden your skill set.

Responsibilities

• Security Incidents: Monitor and analyze security alerts and incidents to identify potential threats.
• Investigate security breaches and incidents, determining root causes and impacts.
• Coordinate with IT and other departments to contain and mitigate security incidents.
• Document and report security incidents, providing detailed analysis and recommendations.
• Monitoring and Remediation: Continuously monitor network traffic, system logs, and security tools for unusual activity.
• Implement and maintain security tools and technologies to enhance threat detection and response.
• Execute remediation plans to address vulnerabilities and security gaps.
• Conduct regular vulnerability assessments, audits, and penetration testing.
• Security Audits: Conduct internal security audits to ensure compliance with security policies and standards.
• Collaborate with external auditors during third-party security assessments.
• Prepare audit reports, highlighting findings and recommending corrective actions.
• Track and ensure the implementation of audit recommendations.

Qualifications

• Proven experience as an Information Security or similar role.
• Knowledge of security frameworks and standards (e.g., ISO 27001, NIST).
• Good analytical and problem-solving skills.
• Strong communication and interpersonal skills.
• Relevant certifications (AWS, CEH) are a plus

Benefits

• A competitive salary based on your experience and ability to perform in role
• 25 days annual leave (excluding bank holidays) + a day off for your birthday + 2 Volunteering days
• Private medical insurance
• Life assurance - 4x your base salary
• Fantastic corporate discounts and mental wellbeing support, including a top of line EAP.
• Salary sacrifice schemes
• Enhanced Maternity, Adoption & Share Parental Leave
• We have fantastic offices in Basingstoke and London complete with a fully stocked fridge / snacks and catered lunches 2 times a week.
• We also reward our teams with monthly socials, 4pm finishes on a Friday & 3pm Fridays finishes during the summer months of June, July and August, 3 extra days off during the Christmas holidays and a culture built on recognition, collaboration and success.