Information Security Officer - London, United Kingdom - Remploy

Remploy

Verified Company

London, United Kingdom

2 weeks ago

Posted by:

Tom O´Connor

beBee Recruiter

Description

Introduction
Be part of something great

Maximus is a global organisation that specialises in providing health and employment services to millions of people every year.

Here in the UK we employ around 5,000 people across the country to deliver services that have a profound impact on people's lives.

From assessments and health services to employability programmes and specialist support, we do work that matters with people who care.

Job Summary

The Information Security Officer is responsible for ensuring information security for an assigned area of Business / Project focusing on key areas of risk, outlined in the Information Security policy, under the direction of the Information Security managementteam.

Responsible for oversight of the governance of information and data, ensuring compliance with all relevant statutory, contractual and company selected requirements.

Essential Job Duties

Implements the ISMS framework with a management reporting line to the VP, Information Security Management and Assurance.
Supports audit and client engagements/enquiries, coordinates the collection, review and submission of Information Security deliverables and coordinate the remediation of audit concerns.
Ensures the organisation's policies, processes and procedures are aligned with ISO2700
Ensures the alignment and awareness of MAXIMUS policies in the UK.
Provides daytoday advice on common information security issues.
Coordinates, responds to, and investigates security and data protection incidents
Devises and delivers Risk Assessments and maintains a resulting risk register.
Conducts security impact assessments in support of new initiatives and system solutions
Provides ongoing security awareness training.
Coordinates security accreditation and IT Health Check activities and provides progress reporting to internal and external stakeholders.
Coordinates system and security audits conducted by internal and thirdparty auditors
Takes an active role within UK wide Security forums and initiatives

Education and Experience Requirements
Qualifications and/or Experience

Experience working in healthcare organisations preferred.
Extensive working knowledge of ISO2700
Working knowledge of the Data Protection Act, 201
CISSP/CISM is desirable

Individual competencies

Excellent communicator; with strong written, verbal and presenting skills.
Aptitude for working both alone or collaboratively in a multidisciplinary team with other stakeholders such as legal and compliance.
Proven experience in similar governance or audit roles.
Good analytical skills.
Customerfocused approach
This position requires working with colleagues at all levels, so the ability to articulate technical and regulatory concepts and experience of translating them into requirements to the board and technical implementers is highly desirable

EEO Statement

Where reasonable, MAXIMUS will review and consider adjustments for those applicants who express a requirement for them during the recruitment process.