The following job is no longer available:
Information Security Consultant (Governance / Risk / Compliance) - Bradford
Information Security Consultant (Governance / Risk / Compliance) - Bradford
Information Security Consultant (Governance / Risk / Compliance) - Bradford
Posted 18 days ago
- Wakefield, West Yorkshire
- Any
- External
- Expired - 2 months ago
Information Security Consultant (Governance / Risk / Compliance) – Bradford NEG - please apply regardless of expectations
Work Hours
9am - 5.30pm
Responsibilities
Information Security
Professional Services
Qualifications
MS Security Quals / DPA / GDPR / ISO
Skills
Information Security
Contact number
0113 357 20 45
Additional Benefits
Cycle to work
Region
West Yorkshire DescriptionTechnical RequirementsHave at least 13 years educational backgroundExcellent working knowledge of security and governance, risk and compliance within an enterprise environmentHands-on experience of enterprise information security and standards including Cyber Essentials, ISO 27001, 27002 etc. Data Protection Act and the General Data Protection RegulationMicrosoft O365 Security solutions; Networking; Security operations; Vulnerability Management; Security AuditingExperience of formal document creation, such as the creation of reports or proceduresExperience of carrying out risk reviews, technology audits or other similar workDetailed knowledge of:Threat Intelligence analysis and best practiceSecurity Incident Response processes, procedures, and best practicesDisaster Recovery and Business Continuity principles and testing methodologies Risk analysis and data management methodologiesEvent and log analysisCore Behavioural Skills:Confident individual with the good interpersonal skills, able to deal with people at all levels and communicate to users in a clear, non-technical languageTeam-playerAnalytically minded, able to break down and understand informationMust be comfortable with working in a fast-moving, dynamic environmentStrongly customer-focused, used to providing support to demanding usersGood organisational skills, used to managing and prioritising own workloadAbility to report on progress, timescales, outstanding and completed activitiesResponsibilitiesWorking with the Information Security team to provide advice and guidance on IT security and further develop IT policies and processes across a multi-region infrastructure consisting of 8000+ staff and 100+ sites.As a member of the IT Security team, you will review all aspects of the IT environment and its components. This role shall be responsible for supporting Governance, Risk and Compliance activities. The successful candidate will be required to proactively improve and provide advice and guidance on information security matters.Create and maintain policies within our Information Security Management System, to support business requirements and align with ISO 27001Maintain a register of security controls, to identify compliance against security standards, including ISO 27001, NIST, COBIT etcDevelop and enhance security policies, processes, procedures and technical controls to strengthen security capabilities and resilience to cyber threatsMaintain and manage the IT Risk Register to ensure that IT risks are regularly reviewed, correctly identified, assessed, reported and mitigated in line with recommended best practicesIdentify and raise awareness of security risksDevelop a register of regional regulatory privacy requirements and develop processes to monitor regional controls to ensure compliancePerform daily, weekly, and monthly security checks, reconciliation and compliance checks and investigate exceptionsComplete client security requirement questionnaires and support the bidding processAssist with security incident management and response activitiesGeneral day-to-day support on managing and responding to security alerts from systems and end usersSupport the wider IT team to provide and share technical knowledge and security best practicesTest DR plans, processes and capabilities to ensure they work as designed, identifying gaps and lessons learnt and work with the business to drive continual development and enhancement
#J-18808-Ljbffr
Work Hours
9am - 5.30pm
Responsibilities
Information Security
Professional Services
Qualifications
MS Security Quals / DPA / GDPR / ISO
Skills
Information Security
Contact number
0113 357 20 45
Additional Benefits
Cycle to work
Region
West Yorkshire DescriptionTechnical RequirementsHave at least 13 years educational backgroundExcellent working knowledge of security and governance, risk and compliance within an enterprise environmentHands-on experience of enterprise information security and standards including Cyber Essentials, ISO 27001, 27002 etc. Data Protection Act and the General Data Protection RegulationMicrosoft O365 Security solutions; Networking; Security operations; Vulnerability Management; Security AuditingExperience of formal document creation, such as the creation of reports or proceduresExperience of carrying out risk reviews, technology audits or other similar workDetailed knowledge of:Threat Intelligence analysis and best practiceSecurity Incident Response processes, procedures, and best practicesDisaster Recovery and Business Continuity principles and testing methodologies Risk analysis and data management methodologiesEvent and log analysisCore Behavioural Skills:Confident individual with the good interpersonal skills, able to deal with people at all levels and communicate to users in a clear, non-technical languageTeam-playerAnalytically minded, able to break down and understand informationMust be comfortable with working in a fast-moving, dynamic environmentStrongly customer-focused, used to providing support to demanding usersGood organisational skills, used to managing and prioritising own workloadAbility to report on progress, timescales, outstanding and completed activitiesResponsibilitiesWorking with the Information Security team to provide advice and guidance on IT security and further develop IT policies and processes across a multi-region infrastructure consisting of 8000+ staff and 100+ sites.As a member of the IT Security team, you will review all aspects of the IT environment and its components. This role shall be responsible for supporting Governance, Risk and Compliance activities. The successful candidate will be required to proactively improve and provide advice and guidance on information security matters.Create and maintain policies within our Information Security Management System, to support business requirements and align with ISO 27001Maintain a register of security controls, to identify compliance against security standards, including ISO 27001, NIST, COBIT etcDevelop and enhance security policies, processes, procedures and technical controls to strengthen security capabilities and resilience to cyber threatsMaintain and manage the IT Risk Register to ensure that IT risks are regularly reviewed, correctly identified, assessed, reported and mitigated in line with recommended best practicesIdentify and raise awareness of security risksDevelop a register of regional regulatory privacy requirements and develop processes to monitor regional controls to ensure compliancePerform daily, weekly, and monthly security checks, reconciliation and compliance checks and investigate exceptionsComplete client security requirement questionnaires and support the bidding processAssist with security incident management and response activitiesGeneral day-to-day support on managing and responding to security alerts from systems and end usersSupport the wider IT team to provide and share technical knowledge and security best practicesTest DR plans, processes and capabilities to ensure they work as designed, identifying gaps and lessons learnt and work with the business to drive continual development and enhancement
#J-18808-Ljbffr
.webp "Apply4U | Sign Up")
.webp "Apply4U | Contact Us")
.webp "Apply4U | Sign up")
