Information Security Compliance Analyst

Grade and SalaryGrade E (€48,653-€72,979)*

Job Description

We are Uisce Éireann. Every day, we are responsible for the delivery of secure, safe, and sustainable water services for the people of Ireland. As Ireland’s national regulated water utility, our vision is a sustainable Ireland where water is respected and protected, for the planet and all the lives it supports.

Our purpose at Uisce Éireann is to rise to the challenge of delivering transformative water services that enable communities to thrive. That means we are proud to take on the responsibility of protecting our water supply and passing on a safe and secure water system to a rapidly growing population and empowering Ireland’s social and economic growth.

So, we’re passionate about helping our people to do the best work of their lives, to enable them to make a positive difference to communities all over Ireland. Our aim is to attract and develop talented and skilled people with diverse backgrounds and an evolving range of expertise and insight. We believe that such a strong workforce will help us achieve our goals and allow us to continue investing in, and advancing, Ireland’s water services.

The Role:

Uisce Éireann IT (UÉ IT) provides IT/OT services and support to the wider Uisce Éireann business.

The Cyber Security Team is responsible for ensuring efficient cyber operations across the organisation, monitoring and implementing security controls and capabilities, and supporting security design activities, ensuring alignment to leading industry, legal and regulatory standards and requirements. The team play a key role in embedding IT/OT security practices across Uisce Éireann processes, procedures and culture and acts as subject matter expert for the Head of IT, on all IT security related matters and issues across the enterprise. 

Reporting to the Information Security Manager, the Information Security Compliance Analyst will be responsible for developing, updating and managing Uisce Éireanns information security compliance program. This role will focus to ensure that Uisce Éireann adhere to relevant regulatory requirements, industry standards, and internal policies to safeguard sensitive information and maintain a secure operating environment.

Main Duties and Responsibilities:

• SME knowledge of laws, regulations, and industry standards related to information security; e.g., NIST, NISD, NIS-2
• Articulate, interpret and communicate regulatory requirements to key stakeholders.
• Work on multi-disciplinary areas in UÉ e.g., technical, legal and compliance teams to ensure alignment between legal, compliance and security requirements.
• SME knowledge and maintaining information security policies, procedures, and guidelines.
• Update and work with stakeholders to enforce policies across the organisation, including both IT and OT environments.
• Conduct regular reviews to ensure policies remain current and effective.
• Conduct risk assessments to identify potential threats and vulnerabilities relevant to IT / OT, monitor and report on risk management as appropriate.
• Coordinate and participate in internal and external audits.
• Facilitate remediation efforts based on IT/OT Security audit findings.
• Maintain accurate and up-to-date documentation of compliance activities.
• Generate regular reports for senior management and stakeholders on compliance status.
• Prepare and submit required compliance documentation to regulatory bodies.
• Compile monthly IS KPI’s and metrics 
• Liaise with the IT/OT security operations teams to assess the vulnerability of Uisce Éireann systems and infrastructure to information security threats 
• Being a contributor to making Uisce Éireann a safe place to work 
• Drive a ‘one team’ culture. 
• Lead, coach, develop and motivate the team. 

General Duties and Responsibilities

• Collaboration with key internal stakeholders across the UÉ business, including but not limited to; Enterprise Risk, Internal Assurance, IT OT, Legal and Supply Chain.
• Responsible for promoting and delivering health and safety commitments across UÉ and its supply chain, reinforcing positive behaviours and delivering health and safety objectives and requirements to the highest industry standards. 
• Support the delivery of the Uisce Éireann Transformation Programme, driving results required within the Directorate and supporting organisation-wide objectives.
• Other duties as required.

Knowledge, Skills and Experience:

• Relevant third level qualification and or accreditation is desirable
• Experience in cybersecurity, risk or compliance preferable.
•  A minimum of 2 years’ experience in the water, utilities or similar industries is desirable and or relevant experience
• Ability to develop and maintain effective strategic partnerships with key stakeholders internally and externally
• Proven track record with dealing with complex issues, proactively and in a timely fashion along with the ability to communicate information to others
• Highly motivated individual, working to the highest professional standards and with proven ability to deliver results
• Strong analytical skills and ability to identify and analyse problems and potential improvements, and propose and implement solutions
• Demonstrate adaptability and the ability to change focus and direction in line with business strategy and requirements
• Proactively identifying new areas of improvement and using newly gained knowledge and skill on the job

CLICK THE APPLY BUTTON TO GO TO THEIR CAREERS PAGE WHERE YOU CAN CHECK THIS JOB AND ALL OTHER OPPORTUNITIES AVAILABLE.