Information Security Officer

Ref No. BHN537414
Location Hampshire, England
Start date ASAP
Job type Contract ()
Job Status Closed
You can not apply for this job as its status is Closed.
  • Share:


Information Security Officer


Information Security Officer

The Job

Information Security Officer - Contract

Main Purpose of the Role

Key Responsibilities

Key responsibilities of the role include but are not limited to:

  • Information security oversight, guidance, and governance across a variety of internal projects, business initiatives and as needed in relation to BAU activities across the UK and wider global businesses.
  • Project assurance activities from inception to delivery to ensure solutions are secure by design, such as requirements generation, architectural design governance and oversight of internal and external security testing and remediation.
  • Internal and 3rd party risk identification, assessment, and management using the corporate standard methodologies and tooling.
  • Continuous monitoring and maintenance of controls necessary to meet Company's external compliance obligations (Cyber Essentials, NHS DSPT, PCI-DSS, NIS), including to support the growth of B2B services
  • Security review and approvals as part of the formal Change Management and Data Protection Impact Assessment processes
  • Development and continuous review of written policy and guidance, including the support of security awareness initiatives.
  • Support in the investigation and resolution of security incidents as necessary.

What we are looking for:

  • A confident communicator able to engage with stakeholders at all levels of the business to clearly and simply articulate risk scenarios and the resulting business or personal impact.
  • A pro-active team player, willing to seek out opportunities to add value and work under minimal direction whilst balancing load between themselves and colleagues.
  • An ability to balance risk treatment and operational impact to reach pragmatic decisions on the most appropriate management strategies.
  • A minimum 5 years' experience in information security Governance, Risk and Compliance, preferably within a similar general assurance role. Experience within the retail sector would be advantageous.
  • Working knowledge of 1 or more relevant information security frameworks and regulatory compliance models (e.g., ISO27001, NIS-CAF, PCI-DSS, NHS DSPT, GDPR, PECR).
  • Formal information security qualifications (e.g., CISSP, CISM, CRISC, ISO27001 LI/LA). Formal qualifications in Data Protection (e.g., CIPM, CIPP/E etc.) would be advantageous.
  • Experience working within a mixed delivery team of internal resources and 3rd party suppliers and managing the associated risks.

Role based in Hampshire.

You can not apply for this job as its status is Closed.
  • Share:


Related jobs


Related articles

Back to top