Superb opportunity to join an established end user company in a greenfield role. This is a superb opportunity for the candidate to really take their information security career to the next level. The role is based in North London (Wembley area). Three days a week in the office is required
Key Responsibilities:
* Helping the company achieve the ISO27001 certification over the coming months
* Aligning the information security strategy across all the companies I the group
* Support in security and compliance matters requirement
* Provide security subject matter expertise on projects undertaken by the business and act as advisor on all business security policy, security strategy and information risk management issues
* Support in the execution of the general data privacy assessment processes (including third-party assessments), internal control reviews and risk assessments to monitor compliance with information security policies and standards
* Working effectively with IT teams
* Assist in developing and maintaining Security Incident Response Procedures and Data Breach Guidelines. Reviewing and reporting on security incidents, potential incidents or other security risks and ensuring that appropriate correction and preventative measures are implemented
* Working closely with the CISO to support with risk remediation and solution design related to vulnerability scanning and penetration testing of critical assets
* Ensure that the ISMS security, process and critical systems documentation is maintained/reviewed at appropriate levels and at designated review times
* Assist in conducting Internal IS audits, producing reports with recommendations for remediation and improvement
* Maintain staff information security awareness
Must haves:
* Knowledge and experience of internal information security auditing based on ISO/IEC 27001 Information Security standards – ideally been involved in and ISO27001 implmentation
* Understanding and experience of successfully maintaining information security standards in a live multi-country
* Knowledge of current information security legislative/regulatory requirements such as GDPR
* Knowledge of risk management/assessment and compliance principles as they relate to projects and operations
* Strong communicator with excellent written communication skills
* Strong analytical and organisational skills with the ability to work independently, as well and as part of a wider team, with minimal supervision
* Have a positive attitude with an eagerness to learn and develop professional knowledge
Salary up to £70,000 + benefits
Please send your CV for immediate review