Information Security Officer - London, United Kingdom - Kubapay

Description

Kuba is looking for an Information Security Officer (ISO) responsible for the strategic planning, development and administration of an effective information security program.

As the ISO, you will have system and information ownership and develop, establish and maintain standards, procedures and guidelines to promote the security and uninterrupted operation of systems.

In this role, you will be responsible for identifying and addressing exposures to accidental or intentional destruction, disclosure, modification, or interruption of information that may cause serious financial and/or information loss.

Your goal will be to ensure that our technology infrastructure is well-protected.

If this sounds like you and you're also a problem-solver and quick decision-maker, we'd like to meet you.


Responsibilities:

Design and implement safety measures and data recovery plans
Monitor network activity to identify issues early and communicate them to IT teams
Coordinate internal efforts toward maintenance and/or adoptions of relevant information security standards (e.g. ISO 27001, PCI-DSS) and a culture of continuous improvement
Ensure adherence to, communication and training of information security policies, procedures and guidelines
Delivery of information security reporting, presentations and KPI's
Maintain appropriate Information security risk registers and remediation measures
Coordinate all required policies and guidelines for information security and provide guidance to policy owners on how to achieve compliance with required standards
Ensure that all documentation complies with client requirements, ISO or appropriate certifications) and business policy in order to safeguard confidentiality and integrity of business information
Manage, maintain and regularly review security and compliance regimes for ISO 27001 and other appropriate certifications and business policy
Develop and maintain vulnerability management and organise monthly information security reports, showing trend analysis
Respond to and support the bid process with regards to information security-related issues and manage the response to the Client's Information security questionnaires
Identification of areas of improvement for risk management, recommending and implementing best practice where appropriate
Act on privacy breaches and malware threats
Serve as a security expert and conduct training when needed


Requirements:

Experience in Information Security
Experience in a sysops role or similar
Extensive knowledge of security frameworks and standards (e.g. PCI-DSS, ISO 27001)
Knowledge of patch management, firewalls and intrusion detection/prevention systems
Solid knowledge of GDPR and national data protection laws with exposure to DPO responsibilities
An analytical mind with excellent problem-solving ability
Detailed technical knowledge of database and operating system security
Hands-on experience in security systems, including firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, content filtering, etc.
Experience with network security and networking technologies and with system, security, and network monitoring tools
Demonstrable experience with maintaining compliant environments
Strong knowledge of best practices in systems security
Experience working with QSAs/Auditors
Aware of developments in Cyber Security


Benefits:

Pension Plans
Employee Assistance Programme - Counselling
Hybrid / remote working