Information Security Officer - London, United Kingdom - Comtecs Ltd

Comtecs Ltd

Verified Company

London, United Kingdom

4 weeks ago

Posted by:

Tom O´Connor

beBee Recruiter

Description

IT Security Officer / InfoSec Officer / Information Security Officer - Governance, Risk, Compliance; Implementation of Security Controls; Risk Assessments; Security Audits; InfoSec Advisory; Incident Management.

CISM, CISSP, CySA+, CASP+ etc; ISO 27001,NIST, Cyber Essentials Plus. London / Remote (Hybrid 1 Days Per Week In Office). £80k - £85k + Benefits

Global Unified Communications solutions provider seeks an IT Security Officer / InfoSec Officer to lead the development, implementation and management of information security policies, procedures, and guidelines across the global organisation with a focus onthe UK and USA.

This is a Senior Information Officer role which will require an individual contributor to undertake risk assessments and IT security audits prior to the implementation of any and all systems (hardware, software) or services for both the internal organisationand external clients.

Alongside this auditing work you will devise and implement GRC (Governance, Risk, Compliance) and appropriate security controls in line with regulatory and industry benchmarks.

The IT Security Officer / InfoSec Officer will then monitor implemented IT security controls to ensure compliance with security policies and procedures, identify vulnerabilities, take ownership of core security areas in active processes and projects on thesecurity roadmap and create security policies which meet modern security compliance standards.

This will involve managing the development of security procedures within the specific areas (software, network, production server, devops etc) and report to theCISO on the state of these areas.

We are searching for an IT Security Officer / Senior IT Security Analyst / InfoSec Officer / CISO or IT Auditor (perhaps someone who has been an auditor for Cyber Essentials Basic / Plus or similar) who can bring both procedural security knowledge, experienceof audits and the implementation of security procedures and controls within best practice frameworks within either business or public sector environments.

You will be an information security professional who holds certifications ranging from CySA+, CASP+,CISSP, Security+, CISA, CISM, and may have some exposure to frameworks such as ISO 27001 or NIST.

You will be familiar with undertaking security audits and providing guidance and advisory to both technical and business stakeholders alike.

Excellent organisationand communication skills are pre-requisite. Degree level education preferable but non-essential.

Excellent opportunity to join an international AV & UCC solutions provider during a time of exciting growth and corporate development.