iManage

Principal Information Security GRC Analyst

Information Security - London, United Kingdom - Full Time

We offer a flexible working policy that empowers iManage employees to balance work and well-being. We encourage two days per week in-office collaboration, offering opportunities to learn from peers in person, while also providing the flexibility needed for a meaningful work-life balance.
 
Being a Principal Information Security Analyst at iManage Means…

You are a dynamic security team leader excited and ready to take your Information Security career to the next level. You are comfortable working with a broad range of stakeholders; IT, engineering, security operations, marketing, pre sales and customer security compliance teams.

As a senior member of our Security team, you will have no shortage of interesting and varied security projects to work on and learn from.  You will lead the team with our security governance, risk and compliance objectives, author our security documentation, collect and develop periodic compliance and security metrics, build and run our compliance platform, own customer security activities including developing sales collateral and white papers, and more. In addition, you will translate external security standards into actionable requirements for operations and engineering teams. and identify security risks. This role is expected to progress to a manager position within 12-18 months.

Here is what one of our leaders, Senior Director of Security Compliance (Michael Hall), has to say about the role: Our team is dedicated to not only protecting our cloud platform but also fostering a culture that values people and their growth. We work with incredible customers across a wide variety of industries, providing unique and exciting security challenges every day. If you're looking for a role that offers the chance to work with industry experts then this is the place for you! Come and be a part of a team where your contributions are valued, and your development is a priority.”

iM Responsible For…
  • Mentoring a global team of junior security analysts, including supporting recruiting and development activities.
  • Managing the creation and maintainance of security policy, standards and process documentation, including customer facing security documents and material to support our sales and customer teams.
  • Partnering with customer teams to ensure customer due diligence assessments, legal reviews, questionnaires and RFPs are completed to deadlines, and identify opportunities for automation and efficienies.
  • Driving cultural change by implementing security training and awareness campaigns.
  • Managing the opertation of our compliance platform, document repository, and customer trust centre.
  • Supporting the review, design and implementation of information security and compliance standards (ISO 27K, ISO 22301, SOC2 Type 2, CSA STAR, FedRAMP) and tracking their implementation across the business.
  • Tracking security control gap remediation activities.
  • Identifying future compliance requirements and reporting & monitoring security and compliance objectives.
  • Defining and reporting against Security KPIs, including creating dashboards and reports.
  • Working closely with the Security leadership team to support Security Governance, and risk remediation.
  • Supporting the oversight and execution over corporate security governance and control implementation.

iM Qualified Because I Have…
  • 10+ years experience with security and compliance standards such ISO 27001, CSA STAR, NIST 800-xx, SOC 2.
  • Experience Leading a team
  • Held an information security compliance position (or similar), have a solid background in IT, and a good understanding of cloud computing environments including data centres, networks, operating systems and security operations.
  • Strong analytical and organisational skills and a great attention to detail.
  • Ability to work independently, as well and as part of a wider team, with minimal supervision.
  • A positive attitude with an eagerness to learn and develop professional knowledge.
  • Bachelor’s degree in Engineering, Computer Science, IT or equivalent experience.
Bonus Points if I Have...
  • Security certification such as CISA, CISM, CISSP, CRISC, GIAC or similar.
  • Incident Management and Business continunity management experience.
     
Don't meet every qualification listed above? Studies show that women and people of colour are less likely to apply to jobs unless they meet all qualifications. At iManage, we are committed to building a diverse and inclusive environment, and encourage everyone to show up as their full authentic selves. We welcome those that come with a growth mindset and a hunger for learning; so, if you are excited about this role but your past experience doesn't align perfectly with every qualification we encourage you to apply anyway!

iM Getting To…
  • Join a rapidly evolving, industry-leading SaaS company on an exciting journey of growth and scalability! 
  • Take on meaningful, high-impact challenges by leveraging cutting-edge technologies and best-in-class protocols to drive innovation. 
  • Own my career path with our internal development framework. Ask us more about this! 
  • Expand my skill set and earn certifications with unlimited access to LinkedIn Learning courses and interactive Microsoft courses & training. 
  • Be part of a supportive and experienced team within a dynamic, inclusive, and encouraging culture. 
  • Enjoy flexible work hours that empower me to balance personal time with professional commitments. 
  • Collaborate in a modern, open-plan workspace featuring a gaming area, free snacks and drinks, and regular social events. 

iManage Is Supporting Me By...
  • Creating an inclusive environment where you’re encouraged to help shape the culture by bringing your unique perspective, not just by fitting in. 
  • Providing a market leading salary determined through a fair and consistent process, equitable for all our employees, and regularly reviewed against industry benchmarks. 
  • Rewarding me with an annual performance-based bonus. 
  • Providing enhanced parental leave (20 weeks for primary and 10 weeks for secondary caregiver at 100% pay) 
  • Matching my pension contribution (up to 6%) 
  • Offering BUPA private medical insurance & a Simplyhealth cash plan to assist with the everyday costs. 
  • Providing Group life cover, including life insurance, income protection, and critical illness protection. 
  • Encouraging me to make use of our top-tier flexible time off policy, which includes 25 days of annual leave and the flexibility to take further additional time off as needed 
  • Having multiple company wellness days each year to prioritize mental health and well-being. 
  • Providing access to RethinkCare, a global behavioral health platform that enhances personal well-being, strengthens professional resilience, and empowers parental success through expert-led training and resources. 

About iManage…

At iManage, we are dedicated to Making Knowledge Work™. Our intelligent, cloud-enabled, and secure platform is trusted by 4,100+ customers and 430,000 users worldwide, managing over 11 billion documents and 11 petabytes of data. We empower professionals across 65+ countries to unlock the full potential of their business content and communications. 

We are continuously innovating to solve the most complex professional challenges and enable better business outcomes; Our work is not always easy but it is ambitious and rewarding.
So we’re looking for people who embrace challenges. People who thrive on solving problems, pushing boundaries, and collaborating with the industry’s best and brightest. That’s the iManage way. It’s how we turn the impossible into reality, empower our employees to grow, unlock their potential, and create a meaningful impact on everything we do. 

Whoever you are, whatever you do, however you work. Make it mean something at iManage.

Learn more at: www.imanage.com

Please see our privacy statement for more information on how we handle your personal data: https://imanage.com/privacy-policy/

 


#LI-DL1
#LI-Hybrid
Apply: Principal Information Security GRC Analyst
* Required fields
First name*
Last name*
Email address*
Location
Phone number*
Resume*

Attach resume as .pdf, .doc, .docx, .odt, .txt, or .rtf (limit 5MB) or paste resume

Paste your resume here or attach resume file

What’s your citizenship / employment eligibility?
LinkedInLinkedIn profile URL:
Desired salary
In 150 characters or fewer, tell us what makes you unique. Try to be creative and say something that will catch our eye!
We’d like you to read the information below regarding the information we will collect from you for recruitment related activities in accordance with GDPR and to get your consent to store your Data.

We’ll only collect and process your data for recruitment related purposes. We’ll never share or transfer your data with anyone else for any purposes outside our recruitment process and it will be stored in our Applicant Tracking System.

When you submit your application, we’ll collect and store your CV, contact details and any further information you provide at the point of application. We may add to the information we collect throughout the interview process and we’ll need to collect some further details when making a job offer. Depending on your location this may include things like your personal address and right to work.

We will keep your information stored on our Application Tracking System and you can request us to delete your data or correct any inaccuracies on our Applicant Tracking System. You can contact the recruitment team to request access to or for us to delete your data that we have collected on our system. For any requests, you can get in touch with us on [email protected]

By clicking the ‘Yes- I Accept’ button you will be giving iManage your consent to use your data in accordance with our recruitment policy. **
How did you hear about us?*
Who referred you (If applicable)
Are you legally authorised to work in the U.K?*
Human Check*