Senior Information Security Practitioner - Birmingham, United Kingdom - rradar

rradar

Verified Company

Birmingham, United Kingdom

1 week ago

Posted by:

Tom O´Connor

beBee Recruiter

Description

The UK's data and information security landscape is rapidly changing, and businesses are facing real uncertainty about how to ensure they remain compliant with what the law requires.

As a result, we are now seeing significantly increased demand for our services and to help address this, we are looking to expand our Cyber, Data and Information Law (CDIL) team with an experienced Senior Information Security Practitioner.

About the role*Reporting to the CDIL Team Leader, and as an expert in the information security field, your key areas of responsibility will include:Working as a part of rradar's Cyber, Data, and Information Law team to develop rradar's Information Security Consultancy practice.

Supporting the development of commoditised information security offerings for retail to our customers.
Maintaining a repository of standard responses for customer compliance assessments.
Responding to customer security assessment questionnaires quickly and accurately.
Working with rradar's Digital Product Team to assist in the development of commoditised digital offerings in Information Security governance, risk, and compliance
Producing content for digital tools as required by the Digital Product Team
Working with rradar's Governance, Risk and Compliance team (GRC) to develop and lead internal information security projects.
Contributing to the GRC team process documentation.
Maintaining a playbook of GRC standard operating procedures.
Ensuring our adherence to other specifications, including Cyber Essentials basic/plus and CSA-CCM.

You*At least 5 years experience in Information Security systems, with experience as an ISO 27001 lead implementer or auditor

Proven experience of taking the lead on and managing crossfunctional and matrix delivery teams, including external suppliers
Experience in the design, development, and delivery of a Consultancy function/services
Expertise in the production of Information Security Risk Registers, with scenario identification and quantification, alongside identification of risk treatment options to inform a risk treatment plan
Experience working in a SoftwareasasService organisation or with multinational information security management programmes would be desirable

Agile working*We recognise the importance of in-person culture and the value of collaboration and cross-team learning within and across the business.

It helps drive our innovation, service and product development for our clients.

With this in mind, we have now introduced fully agile working, where our people will be able to decide which days they attend the office "with purpose", taking into consideration the needs of the business, clients, partners and their team.