AEJ Consulting
Information Security Officer
Job Location
UK, United Kingdom
Job Description
My growing client are seeking an experienced Information Security Officer to join them on a six month fixed term contract basis.
Working closely with the Information Security Manager, you will be responsible for safeguarding the organisation's information systems and data from security breaches, unauthorised access, and cyber threats across their business units. You will also be developing and implementing security policies, procedures, and controls, as well as auditing business units.
Role Responsibilities
* Working with the leadership team to support the implementation of the group-wide information security strategy and roadmapping
* Identify security risks and develop mitigation strategies.
* Ensure compliance with relevant industry standards and regulations (e.g. GDPR and ISO 27001).
* Stay up-to-date with emerging security threats, vulnerabilities, technologies and industry best practices to recommend improvements.
* Assist in the establishing and enforcement of group-wide security policies, standards, and procedures.
* Assess and manage security risks associated with third-party vendors and service providers.
* Ensure vendors comply with group security requirements.
Requirements:
* Bachelor's degree or 5+ years professional experience in Information Technology, Computer Science, Cybersecurity, or similar.
* Experience understanding an organisation's business goals, objectives, and industry landscape to align security strategies with priorities.
* Experience in conducting information security audits, risk assessments, and vulnerability assessments.
* In-depth knowledge of security frameworks and standards (e.g. NIST, ISO 27001, ISO 9001, Cyber Essentials standards) and their underpinning controls and best practices.
* Strong problem solving, analytical, communication, and report writing skills.
* Understanding of network security, cryptography and risk management.
* Able to collaborate with cross-functional teams and communicate technical concepts to non-technical stakeholders
* Able to work with and understand the needs and concerns of vendors, partners and customers in order to discuss and tailor security measures and agree necessary protection is in place
* ISO Lead auditor certification (Desirable)
* Industry certifications such as CISSP, CISM or CISA (Desirable)
If this sounds like you, please apply now
Location: UK, GB
Posted Date: 11/24/2024
Working closely with the Information Security Manager, you will be responsible for safeguarding the organisation's information systems and data from security breaches, unauthorised access, and cyber threats across their business units. You will also be developing and implementing security policies, procedures, and controls, as well as auditing business units.
Role Responsibilities
* Working with the leadership team to support the implementation of the group-wide information security strategy and roadmapping
* Identify security risks and develop mitigation strategies.
* Ensure compliance with relevant industry standards and regulations (e.g. GDPR and ISO 27001).
* Stay up-to-date with emerging security threats, vulnerabilities, technologies and industry best practices to recommend improvements.
* Assist in the establishing and enforcement of group-wide security policies, standards, and procedures.
* Assess and manage security risks associated with third-party vendors and service providers.
* Ensure vendors comply with group security requirements.
Requirements:
* Bachelor's degree or 5+ years professional experience in Information Technology, Computer Science, Cybersecurity, or similar.
* Experience understanding an organisation's business goals, objectives, and industry landscape to align security strategies with priorities.
* Experience in conducting information security audits, risk assessments, and vulnerability assessments.
* In-depth knowledge of security frameworks and standards (e.g. NIST, ISO 27001, ISO 9001, Cyber Essentials standards) and their underpinning controls and best practices.
* Strong problem solving, analytical, communication, and report writing skills.
* Understanding of network security, cryptography and risk management.
* Able to collaborate with cross-functional teams and communicate technical concepts to non-technical stakeholders
* Able to work with and understand the needs and concerns of vendors, partners and customers in order to discuss and tailor security measures and agree necessary protection is in place
* ISO Lead auditor certification (Desirable)
* Industry certifications such as CISSP, CISM or CISA (Desirable)
If this sounds like you, please apply now
Location: UK, GB
Posted Date: 11/24/2024
Contact Information
| Contact | Human Resources AEJ Consulting |
|---|