Information Security Officer - High Wycombe, United Kingdom - Sanderson

Sanderson
Sanderson
Verified Company
High Wycombe, United Kingdom

3 weeks ago

Tom O´Connor

Posted by:

Tom O´Connor

beBee Recruiter
Description

Information Security Officer

  • Cheltenham/ High Wycombe / Leeds 1 2 days in the office per week
- £60,000 + benefits


My client, a leading professional services consultancy in the UK, are actively looking for an information security officer to join their existing team of 10.

Within this role you will have responsibility for ISO27001, business continuity and their educationand awareness program. If you are looking for a role with a career path into an information security management role, then this is the role for you


Responsibilities

  • Contributing to the content of appropriate Information Security Policies, Procedures and Controls with due regard to efficiency and risk;
  • Supporting the Information Security Manager in the development, delivery and ongoing maintenance of the Management System (ISMS) and certifications;
  • Ensuring adequate internal action and timely response for Information Security and Data Protection related incidents;
  • Planning, organising and carryingout (ISO27001 and ISO 9001) internal audits;
  • Assisting with the development of the Business Continuity Plan (BCP) and associated testing and maintenance;
  • Assisting with the development of policies and taking responsibility for policy maintenance when required;
  • Performing business impact, International Data Transfer and risk assessments as and when required;
  • Supporting the Information Security Manager in developing and running a security awareness programme;
  • Assisting practice areas alongside the Information Security Manager in preparing responses to new business tenders in relation to Information Security and Business Continuity;
  • Supporting the Information Security Manager in preparing responses to Client due diligence audits and questionnaires in relation to Information Security and Business Continuity;
  • Monitoring security compliance with industry and government rules and regulations;
  • Coordinating with IT and Business Areas to assess, implement, and monitor ITrelated security risks/hazards;
  • Supporting the implementation, maintenance and delivery of the supplier management process
  • When required, preparing Information Security management Reports for management;
  • The incumbent of this position is also expected to undertake other duties which may not be listed on this job description as directed by their manager which can be deemed as reasonably within the scope of their role;.

Experience/Qualifications

  • Proven experience in Information Security;
  • Understanding of ISO27001 certification requirements;
  • Knowledge of national and international regulatory compliances and frameworks such as ISO, GDPR and DPA 2018;
  • Experience of running an ISO27001 internal audit programme;
  • Experience of managing an information security awareness programme;
  • ISACA: CISM (Certified Information Security Manager) or CISA (Certified Information Systems Auditor) Certification preferred;
  • IBITGQ: Certified ISO27001 Lead Implementer or Certified ISO27001 Lead Auditor;
- (ISC)2 CISSP (Certified Information Systems Security Professional)

For more details, please get in touch with Mary Pearson on -.
More jobs from Sanderson
See all jobs of Sanderson