London Jobs |
Manchester Jobs |
Liverpool Jobs |
Nottingham Jobs |
Birmingham Jobs |
Cambridge Jobs |
Glasgow Jobs |
Bristol Jobs |
Wales Jobs |
London Jobs |
Manchester Jobs |
Liverpool Jobs |
Nottingham Jobs |
Birmingham Jobs |
Cambridge Jobs |
Glasgow Jobs |
Bristol Jobs |
Wales Jobs |
Oil & Gas Jobs |
Banking Jobs |
Construction Jobs |
Top Management Jobs |
IT - Software Jobs |
Medical Healthcare Jobs |
Purchase / Logistics Jobs |
Sales |
Ajax Jobs |
Designing Jobs |
ASP .NET Jobs |
Java Jobs |
MySQL Jobs |
Sap hr Jobs |
Software Testing Jobs |
Html Jobs |
Job Location | Sheffield |
Education | Not Mentioned |
Salary | £40,000 per annum |
Industry | Not Mentioned |
Functional Area | Not Mentioned |
Job Type | Permanent, full-time |
Reporting to the Head of Information Security, you will principally advise and enable technical teams to make security decisions and provide advice and guidance, ensuring the effective use of common tools and patterns. You will have a proactive responsibility to assist in the delivery of secure systems and implement proportionate controls by working with Product, Change, Risk, IT teams and 3rd party vendors.Main duties:• Implement ISO 27001 framework and Information Security Management System (ISMS).• Lead on compliance reviews, certifications and accreditations (e.g. ISO27001, Cyber Essentials, GDPR etc.).• Implement effective and appropriate GRC controls and measures to protect systems and data.• Identify, communicate and manage current and emerging security threats with relevant stakeholders.• Develop Information security compliance frameworks, security policies and procedures, where necessary.• Work with business, internal IT and 3rd party vendor teams to promote and adopt security best practices.• Work with Security partners, Managed Security Service Provider (MSSP) to conduct and review regular security assessments of vendors and solutions (SaaS, IaaS providers and MSSP).Knowledge and experience:• Comprehensive understanding of Information Security Frameworks (e.g. ISO 27001, NIST CSF, [and Cyber Essentials) and UK and UK Data Protection Act 2018 including GDPR.• Monitoring and reporting on compliance with security and data protection policies, as well as the enforcement of policies.• Knowledge of security technologies such as IDS/IPS, vulnerability testing and Firewalls.• Familiar with HMG Security Policy Framework requirements and Government Security Classifications.Qualifications:Degree qualified and/or MSc Information Security desirable.CISSP, CSSP, CISM, Cybersecurity or similar certifications.ISO 27001 Lead Implementer or Lead Auditor certification.