Information Security Officer, Informa Markets

Company Description

Informa is a leading international events, intelligence and scholarly research group.

We’re the specialist’s specialist. Through hundreds of powerful brands, we work with businesses and professionals in specialist markets, providing the connections, intelligence and opportunities that help customers grow, do business, make breakthroughs and take better informed decisions.

Informa is listed on London Stock Exchange and a member of FTSE 100, with over 11,000 colleagues working in more than 30 countries.

Informa Markets creates platforms for international markets to trade, innovate and grow. Through over 500 leading brands, our exhibitions, specialist digital content and data solutions allow customers operating in specialist markets to meet and trade, and for their businesses and markets to thrive. 

Job Description

The Information Security Officer, Informa Markets will manage and drive security initiatives across the business, take strategy and policy forward and drive implementation, focus and delivery for Information Security.

The Information Security Officer will oversee all security and compliance operations within the within the Informa Markets division of Informa Plc. This role will work closely with the Transformation Office, Project delivery team, and Application Support team looking after information security and compliance within the division. We are looking for a hands-on Information Security Manager with a strong background in web and API security, data security, public cloud security and experience in implementing secure development and testing processes. Other duties will be to help implement and monitor Group Policy within the local landscape as well as manage the day-to-day operational security elements within the division with the Group information security team.

Other duties will be to help implement and monitor Group Policy within the Informa Markets’ landscape and manage the day-to-day operational security elements within the division. This includes but is not limited to internal self-assessments against security controls standards, Vendor Security assessments and monitoring, Business Continuity, Security Incident response, Vulnerability and Penetration testing of our IT infrastructure and web services. You will form part of a wider Enterprise security team, led by Group, and be part of initiatives, collaborative efforts, and support activities for the benefit of the whole of Informa.

Key responsibilities include:

• be the focal point for effective engagement between Informa Markets and the Group Information Security function. Build and maintain effective relationship with a division’s Business and Technology stakeholders. Be the voice of Information Security in the division area and the voice of the business within Information Security.
• be a trusted adviser to senior business and technology stakeholders and provide broad knowledge of Informa’s Information Security strategies, policies, processes, architecture and road maps to enable divisions/business to understand and meet Information Security requirements.
• have a good understanding in web and API security, data security, public cloud security and experience in implementing secure development and testing processes
• Work closely with the Security Architecture team and contribution to development and implementation of Informa security architecture, and the design of Information Security service and processes.
• Advise stakeholders on how to achieve the relevant controls and assist with solutions to support them.
• Manage Divisional security incidents, working closely with Group and Divisional stakeholders.

Qualifications

• Experience in similar role in a complex, international organisation of comparable scale
• Ability to take to the lead in identifying areas for improvement and recommending how to improve them
• The ability to interact with colleagues, build good relationships at all levels and across all business units and organisations, and the ability of influence stakeholders of all levels
• Excellent verbal, written and interpersonal communication skills. Listens and communicates technical subjects to both technical and nontechnical audiences, flexes style to suit the needs of the audience
• Ability to work with others effectively, with 3rd parties, internal teams, and international business units, promoting knowledge sharing within and across teams
• Demonstrable experience of leading and motivating cross-functional, interdisciplinary teams to achieve tactical and strategic goals in a matrixed organisational structure
• Highly self-motivated and directed, with keen attention to detail
• Experience in implementing a secure development lifecycle and working with Privileged Access Management

Desirable (non-essential) experience

• Certified if one or several areas of security, including Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Systems Security Certified Professional (SSCP)
• A good understanding of security frameworks including ISO27001/NIST/CIS/COSO/RMF/PCI/HIPAA
• Experience with IT Security Architecture or a System/Software Development background
• Knowledge of web application security, data security, public cloud security as well as experience in implementing secure development and testing processes

Additional Information

• Flexible working environment
• Learning and Development plan to assist with your career development
• 25 days annual leave plus bank holidays, 4 days for volunteering and a day off for your Birthday
• Central office in Blackfriars, close to mainline and Underground stations, an onsite gym and restaurant, and a variety of amenities nearby
• Opportunity to work with market-leading products across the Lloyd’s List group of services
• Other flexible benefits include Healthcare, Cycle to Work scheme and Season Ticket Loans
• 5% Pension match and Life assurance
• Share-Match options - become a shareholder
• Regular Social Events and Networking opportunities across Informa

We know that sometimes the 'perfect candidate' doesn't exist, and that people can be put off applying for a job if they don't fit all the requirements. If you're excited about working for us and have most of the skills or experience we're looking for, please go ahead and apply. You could be just what we need! We believe strongly in the value of diversity and creating supportive, inclusive environments where our colleagues can succeed.  As such, Informa is proud to be an Equal Opportunity Employer.  We do not discriminate on the basis of race, colour, ancestry, national origin, religion, or religious creed, mental or physical disability, medical condition, genetic information, sex (including pregnancy, childbirth, and related medical conditions), sexual orientation, gender identity, gender expression, age, marital status, citizenship, or other protected characteristics under local law.    This role may also be available on a flexible working or part time basis – please ask the Talent Acquisition team for more information