Information Security Officer - High Wycombe, United Kingdom - Sanderson
Description
Information Security Officer
- Cheltenham/ High Wycombe / Leeds 1 2 days in the office per week
My client, a leading professional services consultancy in the UK, are actively looking for an information security officer to join their existing team of 10.
Responsibilities
- Contributing to the content of appropriate Information Security Policies, Procedures and Controls with due regard to efficiency and risk;
- Supporting the Information Security Manager in the development, delivery and ongoing maintenance of the Management System (ISMS) and certifications;
- Ensuring adequate internal action and timely response for Information Security and Data Protection related incidents;
- Planning, organising and carryingout (ISO27001 and ISO 9001) internal audits;
- Assisting with the development of the Business Continuity Plan (BCP) and associated testing and maintenance;
- Assisting with the development of policies and taking responsibility for policy maintenance when required;
- Performing business impact, International Data Transfer and risk assessments as and when required;
- Supporting the Information Security Manager in developing and running a security awareness programme;
- Assisting practice areas alongside the Information Security Manager in preparing responses to new business tenders in relation to Information Security and Business Continuity;
- Supporting the Information Security Manager in preparing responses to Client due diligence audits and questionnaires in relation to Information Security and Business Continuity;
- Monitoring security compliance with industry and government rules and regulations;
- Coordinating with IT and Business Areas to assess, implement, and monitor ITrelated security risks/hazards;
- Supporting the implementation, maintenance and delivery of the supplier management process
- When required, preparing Information Security management Reports for management;
- The incumbent of this position is also expected to undertake other duties which may not be listed on this job description as directed by their manager which can be deemed as reasonably within the scope of their role;.
Experience/Qualifications
- Proven experience in Information Security;
- Understanding of ISO27001 certification requirements;
- Knowledge of national and international regulatory compliances and frameworks such as ISO, GDPR and DPA 2018;
- Experience of running an ISO27001 internal audit programme;
- Experience of managing an information security awareness programme;
- ISACA: CISM (Certified Information Security Manager) or CISA (Certified Information Systems Auditor) Certification preferred;
- IBITGQ: Certified ISO27001 Lead Implementer or Certified ISO27001 Lead Auditor;
For more details, please get in touch with Mary Pearson on -.
More jobs from Sanderson
-
Cloud Cyber Security Engineer
Cirencester, United Kingdom - 3 weeks ago
-
Software Engineer C
London, United Kingdom - 2 weeks ago
-
Software Tester
Oxford, United Kingdom - 2 weeks ago
-
Senior Product Owner
London, United Kingdom - 3 weeks ago
-
Senior Developer
Bristol, United Kingdom - 2 weeks ago
-
Sdet .NET
Berkshire, United Kingdom - 3 weeks ago