Senior Risk - Weybridge, United Kingdom - ISS Facility Services

ISS Facility Services

Verified Company

Weybridge, United Kingdom

3 weeks ago

Posted by:

Tom O´Connor

beBee Recruiter

Description

Senior Risk & Compliance Lead

Contract:
IT

Location:
Surrey

Hours of work: 40

Contract Type:
Permanent

As the Risk and Compliance Lead, your role is pivotal in ensuring that the UK&I division adheres to IT regulatory requirements and internal policies.

You'll oversee risk management related to IT processes and systems, ensuring compliance with legal standards. Additionally, you'll play a key role in safeguarding the organisation's integrity and reputation concerning its use of technology.

This involves implementing robust compliance frameworks, conducting regular audits, and collaborating closely with stakeholders across various departments to address any compliance gaps or issues proactively.

Your efforts will contribute significantly to maintaining a secure and compliant IT environment, ultimately protecting the organisation from potential risks and ensuring its continued success and reputation.

Key Responsibilities

Identify, evaluate, and report on information security risks in a manner that meets compliance and regulatory requirements
Develop risk management strategies to avoid potential threats or compliance violations
Ensure that IT practices are in compliance with various regulatory standards such as GDPR, HIPAA, SOX, etc.
Regularly audit IT processes and systems to ensure compliance
Develop, implement, and maintain company policies and procedures related to IT security and compliance
Lead the response to IT security incidents and provide postevent analyses to prevent future occurrences
Regularly review and update the IT compliance program, adapting to new regulatory demands and evolving security threats
Supporting new bid & existing clients with INFOSEC questions and questionnaires & reviews of security contractual security schedules

Professional and Personal Competencies/Qualifications

Background or Education in Cybersecurity, Law, Business, or a

related field

Experience in performing IT risk assessments, IT control

implementation, testing and audit procedures

Strong knowledge of IT governance and operations
Familiarity with industry compliance standards and regulations

(e.g., GDPR, HIPAA, SOX, ITIL, NIST and ISO standards)

Excellent analytical and problemsolving skills
Strong communication and presentation skills

The Company
ISS is a world-leading workplace and facility management company, connecting people and places to make the world work better. Working with customers day by day, side by side, we understand every aspect of the user experience.

Through a unique combination of intelligent solutions, high standards and people who care, to help our customers achieve their purpose, whether it's hospitals healing patients, businesses producing the next great innovation, or airports bringing passengers home to their families.

ISS is committed to doing business the right way, taking its corporate responsibility very seriously. Our passion is people.

We offer you a challenging and exciting career in an organisation with people at its heart. In ISS, everyone has the opportunity to develop, grow and make a difference. #ISSGreatPeople #ISSTalent #PeopleMakePlace

ISS is proud to be a diverse and inclusive employer.

ISS welcomes all applicants regardless of age, disability, gender identity or gender reassignment, marital or civil partnership status, pregnancy or maternity, race (which includes race, colour, nationality, ethnic or national origin and caste) religion or belief, sex, sexual orientation or educational background

Our passion for inclusivity and diversity makes ISS a more creative, productive and happy place to work.

Job Types:
Full-time, Permanent

Benefits: