Overview
Information Security Officer - Risk. - Hybrid - Lancashire / Greater Manchester
Information Security Officer with Risk management and risk register experience needed as part of an extremely well-funded growing cyber security team for this North West based enterprise level critical national infrastructure organisation.
As the Information Security Officer for Risk your primary purpose will be to become a trusted cyber security risk advisor, ensuring the business is compliant against security policy, acting as advisory, collaborating with stakeholders and management to assess risks, review and advise ratings for IT/OT/ Physical Cyber risks and support business coordinators in assessing their risk position. You will build strong relationships with business and technology functions as well as 3rd parties offering real world experience of cyber security risk management. In this role you will act in an advisory capacity to the business day-to-day basis monitoring cyber security risk, compliance across diverse business functions, supporting business area coordinators. Reviewing risks to ensure they are clear, understandable, developing metrics for tracking at risk board.
To be successful in this role you will ideally have as much of the following as possible:
* A minimum of three years working in an information security officer role.
* Worked in or with Technology teams.
* Awareness of information security related law and regulations such as GDPR and NIS Regulations.
* Worked with or awareness of cyber security frameworks and standards. I.e. NCSC CAF, NIST, ISO 2700x series, CIS.
* Certifications such as CRISK/CISM/COMPTIA Security+ etc
* Experience of using a centralised application risk management platform, and business applications
* Experience of assessing vulnerability management platform data, and interpreting attack scenarios
* Experience of interpreting policies, procedures, standards, and guidelines
For this role you will need to display the capability to become policy subject matter expert on cyber security risks, and provide advice and guidance across the organisation in support of security compliance against risk policies.
This advert is a snapshot of the role for more on the company and a qualified job specification along with a confidential conversation about your career - Apply now
Responsibilities
* Act as a trusted cyber security risk advisor and monitor risk and compliance across the organisation
* Collaborate with stakeholders and management to assess IT/OT/Physical Cyber risks
* Review risk ratings and support business coordinators in assessing risk position
* Develop metrics for tracking at-risk areas and communicate risk to the board
Qualifications
* Minimum of three years in an information security officer role
* Experience with Technology teams
* Awareness of GDPR, NIS Regulations
* Familiarity with NCSC CAF, NIST, ISO 2700x, CIS
* Certifications such as CRISK, CISM, CompTIA Security+ (or equivalent)
* Experience with centralised risk management platforms
* Ability to interpret policies, procedures, standards, and guidelines
Compensation and Benefits
£61,500 base salary plus 10.5% bonus and 14% pension, healthcare plus additional benefits.
Information about additional benefits and the hybrid work arrangement is provided by the recruiter. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.
Job Details
Seniority level: Mid-Senior level
Employment type: Full-time
Job function: Information Technology
Industries: Utilities, Energy Technology, and Climate Technology Product Manufacturing
Location: Manchester / Greater Manchester area, United Kingdom
Referrals increase your chances of interviewing at Apply Recruitment by 2x
Sign in to set job alerts for “Information Security Officer” roles.
#J-18808-Ljbffr