Information Security Officer
This job does not exist anymore.
Try running a new search or browse our vacancies.
Or fill in the form below to receive job alerts.
Job Type | Permanent |
Location | London |
Area | City of London, UK |
Sector | InfoSec & Cyber SecurityInfoSec & Cyber Security - GRCInfoSec & Cyber Security - TechnicalInfoSec & Cyber Security - Management |
Salary | £70,000 - £78,000 |
Currency | GBP |
Start Date | |
Advertiser | Business Services |
Telephone | 01273 808822 |
Job Ref | 38343 |
Job Views | 272 |
- Description
A great opportunity to join a global firm offering hybrid working and a great work culture
Main responsibilities
- Respond to internal and external questions and queries in relation to the Firms information security control and governance framework.
- Provide high quality and commercially appropriate consultancy services that is fully aligned with business risk appetite.
- Provide subject matter leadership and response to information security-related incidents, such that these are investigated in a timely manner, communicated effectively and appropriate actions are taken.
- Work closely with 3rd party suppliers to assess and audit their information security posture
- Maintain an in-depth knowledge of all relevant information security standards and frameworks including ISO27001, NIST SP800 series, ASD Top25 and Cyber Essentials.
Undertake information security advisor role for IT and Business Projects. Responsibilities include:
- Conduct information security risk assessments including identifying appropriate risk mitigation controls. Document associated risk treatment plans in sufficient detail for project team to implement
- Work with Project Teams to ensure necessary IT system specific information security documentation is delivered as part of business take-on process. and supporting materials in relation to specific projects
- Provide all assurance actions, information and documentation required to obtain approval from information security accreditor for the project deliverables.
- Ensure all Information Security related requirements for each project is delivered in accordance with the Firms Project Management quality criteria.
Skills:
- Thorough understanding and demonstrated experience implementing and assessing ISO 27001/27002 controls.
- Industry certified such as CISSP, CISM and/or CRISC
- Industry certification in AWS and/or AZURE Cloud Platform
- Certified ISO27001 Lead Auditor
- Excellent knowledge of IS027005 Risk Management standard or NIST RMF
The client are paying £70,000-£78,000