Senior Information Security and Privacy Consultant - London, United Kingdom - Digitalent

Digitalent
Digitalent
Verified Company
London, United Kingdom

2 weeks ago

Tom O´Connor

Posted by:

Tom O´Connor

beBee Recruiter
Description

About them:
Digitalent are really proud to be working with an innovative and expanding consultancy specialising in Information Management and Governance.

They work with best of breed software products and offer ongoing services to public, private and third sector organisations,helping to create, capture, store, manage, share and preserve information and data in a secure and compliant way.

They are looking for a Senior Information Security and Privacy Consultant to join at a time of rapid growth, catering to clients in a vast array of industries (Finance, Insurance, Legal, Pharma, Retail, Charities and Public Sector).

They are offering a salary of up to £85,000, enjoy a hybrid working set up either Central London or Dublin (you can be based either) with 2 days in the office and benefits including:

  • Annual Bonus
  • Personal Development Plan to understand your long term career aspirations and how they can support you
  • Workplace Pension
  • 25 days holiday + bank holidays
  • And new benefits coming soon to include Dental, Healthcare and Life Assurance

About the role:


You will initially have a policy and compliance focus, providing clients with ISO 27001 ISMS implementation and compliance service but that may extend to GDPR based privacy consulting too.

Ideally, you will be certified as an ISO 27001 Lead Implementer and bring real world implementation experience to support clients through their challenges.


Day to day your role will involve:

  • Working with clients to uncover and understand their drivers for ISMS and ISO 27001 accreditation
  • Establish and set up review cycles for all ISMS policies, procedures and related documents
  • Carry out spot checks to ensure policies and procedures are being adhered to relating to ISMS, and provide and collate all related documentation
  • To propose amendments to the ISMS, where it is identified that improvements or adjustments could or should be made
  • Regularly review the ISMS risk register and ensure it accurately reflects the organisation's position
  • Ensure that risk mitigation action owners are aware of their actions and are progressing in accordance with agreed timescales
  • To work effectively with the client's staff who use the ISMS, making optimum use of their time when discussions are needed on the ISMS and the ISO 27001 accreditation process
  • To advise senior management on the appropriateness or otherwise of ISO controls
  • To provide support to our internal implementation of ISO 2700
  • To provide (or work towards being able to provide) privacy advisory services to clients including advice on GDPR compliance especially data mapping and vendor risk management
  • To work alongside the Head of Information Security in the further development of our Information Security propositions, including the use of other Information Security Standards

About you:

  • Excellent knowledge of ISO 27001 standard
  • Experience of ISO 27001 Gap Analysis
  • Experience in establishing and maintaining an ISMS
  • Experience of project planning and workload management
  • Experience of risk management / risk assessment
If you have any of the following that would be great

  • Knowledge of other Cyber Security standards (NIST, CIS, Cyber Essentials)
  • Experience of ISO 27001 Auditing
  • Experience of the Tugboat Logic ISO 27001 platform
  • Experience and understanding of broader information governance disciplines
  • Knowledge of the GDPR especially data mapping and vendor risk assessment
  • Ability to build a business case
More jobs from Digitalent
See all jobs of Digitalent