Data Inventory Analyst (C3)

 

Division/Department

Data Governance & Information Security (DGIS)/Governance, Risk & Compliance (GRC)/Risk & Data Inventory Team 

 

Location

Hybrid working - home and Coventry SSC

 

Reporting to

Data Inventory Analyst (C4)

 

Directly or indirectly manages

No direct reports 

 

Budget

No direct budget responsibility 

 

In a nutshell

You will work in the Data Inventory team within Data Governance and Information Security (DGIS) to ensure the register of in-scope data inventory assets is properly maintained and monitored. 

 

What I am accountable for 

You will assist with the quarterly access reviews, contacting stakeholders, collating results, and escalating when appropriate. You may also be required to support other governance projects across GRC (Governance, Risk & Compliance).

 

Gather and maintain a list of all in-scope data assets Assist with the quarterly access reviews Validate the results of the reviews, feeding back to stakeholders & escalating when appropriate Support stakeholders within DGIS with data inventory related queries and data requests  Improve and streamline processes, as necessary and as regulatory frameworks evolve   Sending timely comms to stakeholders  Assist with the reporting for senior stakeholders on identified compliance gaps, remediation activities and assets in escalation Build and maintain strong relationships with stakeholders across the business Document and maintain processes used within the team Support the adoption of appropriate process documentation and controls Work closely with the risk & policy team to ensure a joined-up process across GRC teams  Support the C4 Data Inventory Analyst and Risk Manager to further promote and increase awareness

 

 

What I need to know 

 

Essential

Passion for Information Security and an eye for detail   Some knowledge and experience of information security, data governance, key security controls, inc. risk management or control design and reviews Appetite to learn and expand knowledge of Information Security and relevant frameworks Well organised, able to work independently and within a team Someone with the ability to think methodically and logically Be able to communicate well using spoken and written word    Work collaboratively with a range of people to support the team and wider business agenda   To be able to deliver quality results on time 

 

Desirable 

An understanding of NIST, ISO27001, PCI DSS, GDPR & ITGC and how and why they apply to Sainsbury’s An information security or data governance qualification or certification

 

What I need to show

Demonstrate consistent achievement of objectives while exemplifying our valued behaviours. 

 

Own it Always do what you say you’ll do and suggest solutions for problems as you spot them Ask questions and contribute honestly in discussions or conversations Prioritise your work in line with team or project goals Make it better  Willing to try new approaches in order to improve and simplify Embrace variety and open to opportunities to transfer your skills to new challenges Seek information to better understand your role and how teams around you operate  Act on feedback you receive and give accurate and timely feedback to others Be human  Show care and respect to everyone Seek opportunities to connect with others and build trusted relationships Walk in the shoes of your internal and external customers, considering their needs in all you do

 

 

Support we will provide

Your line manager and the Riak and Data Inventory Manager will provide support and guidance   Access to the DGIS teams who have a wide array of skills and knowledge    Extensive support and training materials available  Other resources as required