Information Security Officer - Northallerton, United Kingdom - North Yorkshire Police

    North Yorkshire Police
    North Yorkshire Police Northallerton, United Kingdom

    1 month ago

    Default job background
    Full time Technology / Internet
    Description

    Hours: Full time 37 hours per week, Monday to Thursday 08:30 – 17:00 and Friday 08:30 – 16:30.

    We are looking to appoint an Information Security Officerto join the Business Design and Assurance (BDA) Department where you will embrace the concept of collaboration, driving service excellence and continuous service improvement.

    As Information Security Officer you will lead the Information Security team ensuring the delivery of high quality, credible and timely advice and assurance activities in line with relevant legislative and Home Office requirements, Codes of Connection, national and local procedures and guidance.

    We are looking for a proactive leader who is keen to foster a positive and inclusive team culture and ensure interdependencies across all Information Management are aligned whilst delivering an excellent customer experience.

    Working with the Information Management Lead and in partnership with service users you will contribute to the design of the service catalogue and associated key performance indicators (KPI's) to inform ongoing performance measurement and improvement of service delivery. As such we are looking for an individual who has a drive to demonstrate real value to front line services through data and results.

    Key responsibilities:

    • Lead, manage and develop the Information Security team to ensure full capability across all activities, delivering excellent customer service.
    • To act as Force Accreditor of information systems to ensure the effective risk management of the forces data and network to allow continued access to national police systems.
    • Prepare and complete all risk-assessed information assurance and governance control documentation required by the Home Office, in line with Codes of Connection requirements to seek approval of the Community of Trust and national system connectivity.
    • Oversea and provide expert advice to Information Asset Owners and key stakeholders of their legislative responsibilities.
    • Assess the risk to the organisation on information assurance issues and security incidents, instigating appropriate actions to mitigate the risk and briefing the Senior Information Risk Owner.
    • Oversee information security assurance activities, negotiating with and influencing key stakeholders to agree remedial action required to maintain the security and accessibility of records in line with statutory, legal, and local procedural requirements.
    • Support the work of the Data Protection Officer in maintaining and managing the compliance with the Information Asset Register and Record of Processing Activities, ensuring the necessary compliance requirements.
    • Monitor delivery of service in accordance with agreed standards and ensure measurement, delivery and reporting SLAs as well as taking action to develop and deliver ongoing process and service improvements.
    • Maintain up-to-date knowledge of current and impending national changes and proposing any changes required to policies and procedures.
    • Promote the service catalogue, associated tools, and SLA's, ensuring they are clearly understood by service users and colleagues.
    • Develop and implement key tools and learning to improve processes and the service user experience.
    • Oversee the design, development and delivery of customised reports that enable the production of accurate, relevant, and timely management information in partnership with colleagues.
    • Oversee research or project work on key issues or specific initiatives, as well as managing and developing any additional resources assigned to said projects.
    • Represent Information Management at relevant meetings or working groups.

    Requirements:

    To be successful you will:

    • Hold or be willing to pursue and obtain at least the foundation professional qualification such as Certified Information Security Management Principles (CISMP) or equivalent.
    • Be willing to work towards the Certified Information Systems Security Professional (CISSP) qualification.
    • Be talented in using various IT systems including Microsoft Office and in particular Excel (MS SharePoint is preferable).
    • Have a high level of attention to detail.
    • Be confident with producing and presenting accurate data and information.
    • Have line management experience.
    • Have effective negotiating and influencing interpersonal skills, including the ability to effectively communicate with a broad range of diverse and demanding customers across a variety of platforms.
    • Have demonstrable experience of making risk-based decisions and ideally have experience in dealing with high pressure situations.

    The idea candidate will also have:

    • An in depth understanding of the Data Protection Act (2018), IT and physical security requirements and relevant standards.
    • Experience in advising senior managers in information security matters.
    • Knowledge of the National Cyber Security Centre's 14 Cloud Principles as well as an understanding of cloud technology and any emerging technologies, and their security.

    Positive Action

    We, at North Yorkshire Police value difference. We have a positive action team who are dedicated to supporting you through your application and beyond. If you feel you need any reasonable adjustments to help reach your potential, please contact our Positive Action Team.

    How to apply

    Please submit your application before the closing date.

    Key dates:

    Vacancy closing: 09:00am on Thursday 23rd May.

    Interview: 6th /7th June