Information Security Management System Co-ordinator

Carrington Recruitment Solutions Ltd ,
London, Greater London
Job Type: Full-time
Salary: £40,000 per annum

Overview

Information Security Co-ordinator, ISO27001, CISA, ITIL, BSI, Cyber Security, London Information Security Management System Co-ordinator required to work for a large Professional Services business based in Central London. We basically need someone who is very familiar with ISO27001 standards and who is good with documentation and facing off to stakeholders. This role will involve lots of change, education, documentation, consulting, co-ordinating, partial project management and tonnes of communication We need someone who has a great personality and who is also very passionate about Information Security. Read on for more details… Responsibilities Maintain the organisation’s Information Security Management System (ISMS) Perform audits of information security controls to measure compliance with documented policies, standards and procedures Co-ordinate and support internal and other audits to ensure maintenance of the firms ISO27001 and other cyber certifications Engage with and manage stakeholders across the firm to facilitate identification, assessment and remediation of IS risks and appropriate controls Coordinate and support the development, documentation and implementation of information security policies, processes and procedures to ensure effectiveness of controls Coordinate and support the reviewing/redesigning internal processes and systems to ensure information confidentiality, integrity and availability Document and issue reports of findings in a timely manner and agree and monitor corrective actions with stakeholders Maintain a Corrective Action Plan ensuring that actions are completed by the agreed target dates Maintain the Risk Register and monitor it to ensure that actions are completed by the agreed target dates Define and maintain a record of compliance obligations mapping the evidence required to demonstrate alignment Create reports of risk and compliance status as required Define appropriate metrics for key activities and report against these Maintain the controlled document repository ensuring that process owners update their documentation by agreed review dates Complete information security due diligence requests from clients and prospects as requested Assist with maintenance of the knowledge base of common information security questions and responses to ensure responses to the business are timely and accurate Facilitate information security due diligence assessments on 3rd parties offering services to the firm and support procurement processes Support the CISO, Data Protection Officer, Cyber Security Manager and colleagues to provide a consistent and high quality Information Security service to the business. Experience required: ISO 27001 lead auditor essential CISA desirable Experienced auditor of compliance with ISO controls, including audit of technical standards and procedures Experience of assessing control effectiveness and identifying opportunities for improvement Good understanding and experience of operation and management of risk, controls and compliance in corporate environments Good understanding of governance and decision making in complex organisations Knowledge and experience of cyber security and information security principles and processes Excellent stakeholder management, communication and organisational skills Knowledge and experience of project and change management approaches Experience of innovative organisations and the development of commercial services and systems Knowledge and experience of ITIL and IT services delivery processes Knowledge and experience of continuous improvement processes and approaches Experience of documenting, developing and improving information security policies, processes and procedures Good understanding of current UK data protection requirements and the General Data Protection Regulation This is a great opportunity and salary is dependent upon experience. Apply now for more details.