Job Overview

Location
Newcastle, Northern Ireland
Job Type
Full Time
Salary
£55,000 - £65,000 Per Year
Date Posted
15 days ago

Additional Details

Job ID
316700
Job Views
15

Job Description

The Company
Regional business providing critical infrastructure is looking to recruit a compliance focused Information Security Manager  to lead the Implementation and ongoing management of the key information security standards including ISO27001/19, IT elements of GDPR, Network Information Security Directive (NIS-D) and IT security assurance activities.

The Role
As a key member of the Information Security team, you will be responsible for the maintenance and oversight of the delivery of their Information Security standards and regulations. This will include ensuring the ongoing maintenance of the ISO27001/19 certification by;
  • Fulfilling the ISMS manager role
  • Leading the annual risk assessment and treatment processes
  • Facilitating the Internal and External audit activity
  • Leading user awareness activities
  • Maintaining and continuously improving the Information Security Management System (ISMS)
  • Leading the scope expansion activities as required
  • Developing action plans, and oversee delivery of Internal and External Audit corrective actions.
  • Maintaining certification against the standard(s)
  • Participating in group ISMS managers activity
  • Reviewing, producing and updating key policies

You will also ensure adherence to the Network Information Security Directive (NIS-D) by:
  • Cyber assessment framework (CAF) assessments
  • Taking ownership of the corrective actions
  • Facilitating Internal / External inspection
  • Participating in Industry working groups
  • Liaising with the Competent Authorities
  • Undertaking the Deputy NIS-D Responsible Officer role
  • Defining the Scope
  • Contributing to business planning

In addition, you will:
  • Work with the IT security and wider IT teams in maintaining controls
  • Maintain the ongoing monitoring of vendor risk management programme
  • Support security training and awareness activities
  • Provide support to penetration / vulnerability testing
  • Work with the wider team to deliver great internal customer service
  • Deputise for team members and IT Security Manager as required
  • Contribute to and assist with IT security project delivery
  • Participate in IT security incident responses
  • Participate in IT security incident response planning
  • Support Major Incident activity through “second hat” role process
  • Interaction and support of the parent's Chief Security Officer (CSO)
  • Participate in group CSO forums, supporting colleagues from other platforms as required


The Requirements
With proven experience with, and understanding of, the ISO27001 standard and its implementation, you will:
  • Have experience of working with external audit and certification organisations
  • Be familiar with the ISO27001 certification process
  • Possess in depth understanding of risk management and treatment
  • Have produced and reviewed IT/IS Security polices
  • Possess strong problem solving & technical troubleshooting skills
  • Be able to prioritise a constantly changing workloadprojects

Any ISO 27001 certifications such as an ISO27001:2013 Lead Implementer or ISO27001:2013 Lead Auditor and/or Information Security certification such as CISM would be beneficial though not essential.

Applications are also sought from candidates with an IT audit background looking to move into Information Security.

Location

Similar Jobs

Rise Technical Recruitment Limited

Health & Safety Advisor

Full Time

James Gray Associates

Payroll Officer - Hertfordshire - K

Full Time

Global Project Resources Ltd

Part-time Finance Officer

Full Time

Global Project Resources Ltd

Private Rented Sector Assistant

Full Time

Cookies

This website uses cookies to ensure you get the best experience on our website. Cookie Policy

Accept