Apr 05, 2022

Senior Information Security Analyst

  • Dubber
  • Oxford, England, United Kingdom
Full time

Job Description

About Dubber  

Dubber is one of the fastest growing SaaS companies in the world with offices in Oxford and London as well as Australia and USA. An ASX 300 listed company, Dubber is experiencing significant growth globally. With a strong capital foundation of more than $100m in the bank and a fast growing global team of over 250, this is a chance to join an exciting and dynamic company with strong founder values and a clear strategy.

Dubber unlocks the potential of voice data from any call or conversation. Dubber is the world's most scalable Unified Call Recording service and Voice Intelligence Cloud adopted as core network infrastructure by multiple global leading telecommunications carriers in North America, Europe and Asia Pacific. Dubber allows service providers to offer conversational recording from virtually any source - turning them into AI-enriched insights for compliance, revenue, customer and people intelligence. Dubber is a disruptive innovator in the multi-billion-dollar call recording industry. Its Software as a Service offering removes the need for on-premise hardware, applications or costly and limited storage.

The Opportunity 

Dubber is in a very exciting phase of scale and growth and we are looking for a Senior Information Security Analyst to join us in this hands-on role where you will get to make a real impact. 

Based in our Oxford office, with flexibility for remote working - and reporting to the Global Information Security Lead, you’ll be an integral part of our EMEA and Global infosec team.

You will be responsible for the ongoing governance, continuous improvement, and maturity of our Information Security and Data Protection portfolio, controls and its broader programme.

What’s Your Impact?

  • Maintain the company's certification to PCI-DSS, ISO27001, ISO20000, ISO22301 and BS10008 standards.
  • Conduct internal audits and facilitate external audits and penetration testing to maintain compliance with standards listed above.
  • Manage, coordinate and facilitate risk and compliance meetings, audits and workshops across the organisation.
  • Provide assurance to potential or existing customers regarding the company's information security controls.
  • Build and maintain an Information Security knowledge base/library and web portal to provide customers with the required InfoSec assurance.
  • Pivot the organisations security posture to be as a Public Cloud service provider
  • Champion InfoSec and Compliance within the business ensuring all staff are fully aware of their responsibilities and the Company standards
  • Regularly provide InfoSec training to staff and be the subject matter expert for all things ISMS and Compliance and maintain the ISMS Framework.
  • Work closely with our Legal team to keep abreast of legal and regulatory changes which may impact the business.
  • Review and update policies, procedures and processes relating to risk management and compliance with industry standards.
  • Manage information security compliance projects, and ongoing governance.
  • Research on best practice and regulatory guidance to drive continuous improvement.

About You

  • You have high attention to detail with excellent organisational and planning skills, and are adept at technical documentation.
  • You have excellent written and verbal communication skills with strong abilities to influence others at all levels of seniority, to obtain stakeholder agreement for resolving company risks, and delivering on agreed commitments.
  • You bring 5+ years experience in business analysis, project management, auditing, or similar capabilities and demonstrated experience in information security.
  • Demonstrable knowledge and experience working within the PCI DSS & ISO27001 framework.
  • Experience conducting risk assessments and business impact analysis in IT environments.
  • Knowledge of business continuity and disaster recovery management systems e.g. ISO22301, Business Continuity Institute Good Practice Guidelines.
  • Previous experience in implementing and managing SOC2, GDPR, and similar is desirable. 
  • You are technically savvy with experience using Confluence, Jira and Agile Methodologies.
  • You have sound knowledge of maintaining InfoSec controls and governance in a hybrid and Public Cloud infrastructure.
  • Proven ability to analyse, investigate and problem solve in a high growth environment.

Why Should You Join Dubber?

Dubber offers a competitive salary, employee shares program, and hybrid working options.

With offices across the world, our employees don't just join a local but global team where you will have continuous opportunity to learn, grow and gain valuable experience. 

Inclusion is important to us, and we like to keep things fun, so we run Friday Drinks, BBQ's, Team Lunches and more. 

Next Steps

We will be reviewing applications as they come in so don't wait to apply! Reach out to recruit@dubber.net  for a confidential chat or if you have any questions.