Artis IT
,
Bristol, Bristol
Information Security Officer
|
Salary: £37500 - £45000 per annum + Training, 25 Days Hol, Pension |
---|
Overview
Information Security Officer required by national market leading organisation based in Central Bristol (7-8 minute walk from Bristol Temple Meads Train Station). The Information Security Officer will be responsible for continuing the enhancement and implementation of information security and data processing policies and standards across our clients business and in particular, auditing and maintaining our ISO27001 processes and accreditation. As part of the role, our client will provide you with a bespoke, on-going training programme to ensure you develop your commercial and technical skills to allow you to deliver the varied workload to a high standard. Main Responsibilities Include: Acting as the central point of contact with regards to information security. Ensuring continued compliance against BS ISO/IEC 27001, 20000 and 9001 certifications for all office locations, including planning and coordinating regular external surveillance and re-certification audits; Progressing and closing external audit non-conformities. Plan and implement extensions to the scope of these certifications where our client changes its scope of operations. Assisting as necessary with EU GDPR audit and implementation plan. Monitoring and managing the day to day Information security management system (ISMS). Plan, manage and undertake internal and third party audits on IT governance, information security and controls. The Ideal Candidate Will Have: Proven experience of having managed an Information security management system (ISMS) and maintaining ISO27001 certification in a multi-site operation. Solid understanding of IT and experience in developing IT governance, controls and best practice processes in the form of the IT infrastructure library (ITIL) and IT service management certification (BS ISO/IEC 20000). Considerable experience in undertaking a range of internal and third party audits around Information security, data protection and IT governance and controls. Experience in developing physical security best practice processes and controls. Good understanding of the Data Protection Act and implementation of EU GDPR. Very good understanding of the principles of risk assessment and risk treatment, including operational risk as well as compliance monitoring and reporting. The Package: This fantastic role comes with a basic salary to £45,000 p/a and on top of the bespoke training package, comes with the following benefits: Annual salary review, 25 days holiday (which will increase to 30 days based upon length of service), private medical insurance, pension and many more. This job was originally posted as www.totaljobs.com/job/89898563