Information Security Officer - Risk. - Hybrid - Lancashire
£61,500 10.5% bonus 14% pension healthcare plus additional benefits.
Apply promptly! A high volume of applicants is expected for the role as detailed below, do not wait to send your CV.
Information Security Officer with 3rd party experience specifically around Supply chain and procurement needed as part of an extremely well-funded growing cyber security team for this North West based enterprise level critical national infrastructure organisation.
As the Supply Chain & Procurement Information Security Officer you will build strong relationships with business functions across the business, work effectively with external partners, manging and chairing the Supply Chain Risk Management forum
In this role you will act in an advisory capacity to the business day-to-day basis monitoring cyber security risk, compliance, specifically focused on Third Party Supplier and Supply Chain environments.
In this role you will work with the Information Security Manager to undertake advisory functions to the business in relation to Supply Chain risk and support the business areas to identify, reduce risk. You will lead and chair Supply Chain Risk Management Forum and input help to manage the cyber security compliance schedule and compliance managers.
As the Information Security Officer for the Supply Chain assessing the current threat landscape, providing a realistic overview of risks and threats in the enterprise environment, supporting RFI/RFP, audits, supplier management and Projects with security lens on new suppliers, deliverables will be important to this role.
This enterprise level environment has a significant amount of suppliers into its organisation and this role will grow from this initial hire into potentially leading a team of two to three people. You will be given the opportunity to shape and grow this role allowing you to make a significant contribution to the process around 3rd party suppliers in this organisation
To be successful in this role you will ideally have as much of the following as possible:
* A minimum of three years working in an information security officer role.
* Third Party Supplier and Supply Chain environments
* Working with Supply Chain and/or Procurement teams
* Awareness of information security related law and regulations such as GDPR and NIS Regulations.
* Worked with or awareness of cyber security frameworks and standards. I.e. NCSC CAF, NIST, ISO 2700x series, CIS.
* Certifications such as CRISK/CISM/COMPTIA Security+ - However certification’s are not a substitute for real world experience.
* Experience of interpreting policies, procedures, standards, and guidelines
This advert is a snapshot of the role for more on the company and a qualified job specification along with a confidential conversation about your career - Apply now