Information Security Officer

Morson Human Resources Limited ,
Chester, Cheshire

Overview

A great opportunity has risen with our well-established Nuclear client based in Chester on a contract basis for 12 months. The Information Security Officer (ISO) role is accountable to the Security and Safeguards Manager (SSM) for carrying out activities in support of the implementation of Cyber Security, Information Assurance and Physical Security within the clients group of companies and to assist with the demonstration of compliance with national and international requirements, and the clients processes and procedures. The job holder will work closely with and provide support to the Information & Physical Security Manager (IPSM) to ensure that robust and consistent security measures are applied across the site. The ISO must be able to translate the Information risk requirements and challenges/ constraints of the business into technical control requirements and specifications, as well as develop metrics for on-going performance measurement and reporting. The ISO assists in the coordination of the IT organisation technical activi-ties to implement and manage security infrastructure. The ISO will carry out any security or business related activity as directed by the SSM or the IPSM acting on his behalf. Job Responsibilities: 1. The ISO supports the implementation of the security regime that ensures the protection of the Capenhurst Site and is in particular responsible for ensuring the protection of sensitive information (in both electronic and hard-copy formats), ensuring all IT networks have adequate security to prevent unauthorised access and protection of data at rest, and developing reports in conjunction with the IPSM to share with all relevant stakeholders about the efficiency of security policies and recommend any changes. 2. Provide security advice to projects undertaking work that might create or expose vulnerabilities in IT or OT systems. 3. Responsible for carrying out assurance checks of Sensitive Nuclear Information held by the clients group companies to ensure that documents are accounted for, appropriately handled and stored. 4. Responsible for supporting the Information Security internal assurance regime and supporting processes. Tracking of Information Security internal and regulatory actions, including those arising from regulatory exchanges, ensuring that actions are fulfilled and timely responses are provided. 5. Coordinate effective reporting to ONR of regulation 10 and 22 security events using the INF1 and Follow Up Report system. 6. Assist the IPSM with the delivery of a security culture for information/ Physical security which is fully aligned with the business process, relevant aspects of nuclear safety/ security and risk management, and regulatory requirements. Responsible for delivering Information security communications, awareness and training activities, ensuring that these are aligned to internal and government policy and standards. 7. Responsible for auditing Security in the Company's supply chain regarding requirements and classified contracts. This includes inspections/ due diligence checks of third parties and management and /or production of Security Aspects Letters. 8. Production of security documentation in support of the security function, as directed by the IPSM. 9. The ISO will carry out any security or business-related activity as directed by the IPSM. Job Requirements: Vocational qualifications Educated to degree level (or have equivalent level professional and practical experience) Professional security management certification (or working towards) Experience needed Previous experience in a security role. Ability to work effectively with business managers, IT engineering and IT operations staff. The ability to interact with the clients personnel, build strong relationships at all levels and across all business units and organisations. A strong understanding of the business impact of security measures. Capability to guide company personnel on security matters and work with minimal supervision. Experience working with legal, audit and compliance staff. Evidence of maintaining policy, procedures, standards and guidelines. Experience in providing security guidance and undertaking assurance reviews of security procedures in a regulated environment. This job was originally posted as www.totaljobs.com/job/89657662