Information Security Officer
United Kingdom - Remote
We are looking for an Information Security Officers (ISO) to act as a partner, adviser, and authority in the implementation of the organisations risk management framework.
The nature of your workload will vary from assurance and assessment of infrastructure and applications through to advising technical and business colleagues on options for secure systems.
This is both a business facing, and technical role and you will be expected to be able to operate and balance the needs of both.Responsibilities:
- Acting as a security subject matter expert supporting service owners in obtaining and maintaining conformance to business risk tolerances.
- Providing briefings to governance boards and key stakeholders on risks to new and existing services.
- Ensuring alignment to appropriate standards and recommending suitable control improvements. Evaluating and raising risks to confidentiality, integrity or availability.
- Advising and guiding business services on maintaining compliance with relevant legislation, i.e. DPA 2018, NHS - Data Security and Protection Toolkit and others.
- Contributing to the implementation and development of supporting policies.
- Maintaining a frequent security partner relationship with specified high value services through their service life.
Requirements
Essential criteria:
- The ability to build and maintain strong working relationships with both internal and external stakeholders.
- The ability to analyse disparate or incomplete sources of information and provide value added assessments for use in business contexts.
- Evidence of making good judgements and recommendations to senior stakeholders and management.
- Excellent written and verbal communication skills.
- Ability to demonstrate that you comprehend the value of managing expectations and have a proven track record of doing so.
- A broad knowledge of technologies, including common vulnerabilities and exploits
- A comprehensive knowledge of security controls for modern digital services.
Desirable criteria:
- Familiarity with the NCSC suite of security policy, guidance and standards.
- Experience in using good practice standards such as ISO 27001 (Implementation, Compliance, Certification and audit reviews).
- Experience of undertaking information security in both a waterfall and an agile context.
- Experience of Security Architecture Design.
Qualifications
- You will hold one or more of the following qualifications:
- SABSA Chartered Security Architect - Foundation Certificate (SCF).
- Certified Information Systems Security Professional (CISSP).
- Certificated Information Security Manager (CISM).
- CompTIA Advanced Security Practitioner (CASP+).
- ISEB Practitioner Certificate in Information Risk Management.
Benefits
As an employee of System C Healthcare Ltd – you can expect the following benefits:
- pension scheme with employer contributions of up to 8%
- private medical cover
- full training and development programme
- discretionary bonus scheme
- 23 days annual leave increasing over length of service
- birthday leave, 1 days’ leave to take during your birthday month each year.
- life assurance cover, up to four times your salary
- employee referral scheme
- employee assistance programme
- cycle to work scheme
- payment of professional subscriptions
- additional benefits including gym membership discounts and a range of insurances available at a discounted cost
In addition, we also have company which provide the opportunity for employees across all of the offices to get to know colleagues better in an enjoyable, informal and relaxed environment.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile C CASP+ CISM CISSP Compliance CompTIA Exploits Governance ISO 27001 Risk management Vulnerabilities
Perks/benefits: Fitness / gym Medical leave Salary bonus
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Architect jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open Forensics-related jobs