Security Specialist - Compliance

Sage ,
Reading, Berkshire
More Details

Overview

Job Description

Security Specialist - Compliance Advert: Sage is a global company with a local heart. The market leader for cloud-based accounting, financials, enterprise management, people, and payroll software, we empower the world's business heroes-from single-person startups to large enterprises. Our people are passionate and positive. We inspire our colleagues to serve business builders everywhere and champion their success. As a FTSE 100 company with 14,000 colleagues across 24 countries, we do business the right way, while giving back to our local communities through the Sage Foundation. Sage is passionate about building a culture where our colleagues feel they can bring their whole selves to work. Where people know they'll be judged on their performance and behaviours - not their identity. All qualified applicants will receive consideration for employment and will not be discriminated against based on their race, color, age, religion, sexual orientation, gender identity, national origin, disability or veteran status. Job Description: The posting date: 1/06/2020 The closing date: 29/06/2020 Salary: Competitive To ensure Sage meet its information security compliance objectives, including ISO27001 certification and PCI0-DSS compliance. To maintain and continually improve our security policies, processes, controls and standards. To support our customers by providing security information to support their compliance activities. Key Responsibilities: Key accountabilities and decision ownership: Continual improvement of Sage's information security policies, processes, controls and standards Working with other Sage teams through internal audits or other means to ensure we meet our information security compliance needs Identifying information security risks and working with teams to plan and track risk treatment plans Production and maintenance of the artefacts required for ISO27001 certification or PCI DSS compliance Supporting customer facing teams to provide compliance information to prospects and customers Contributing to the development and continual improvement of methodologies, tools and approaches for the team Takes ownership of own career, identifying technical and non-technical areas for improvement/development Managing own workload to ensure delivery to expected quality and timescales Maintains awareness of the changing threat landscape by participating in and sometimes contributing to relevant security groups, forums, or conferences Skills, know-how and experience: Preferred: Experience in implementing ISO27001, PCI-DSS or similar standards Awareness of secure development and secure operations practices Proficiency in English - written and verbal Experience of working with geographically dispersed teams Experience working in an agile, DevOps/DevSecOps environment Experience in implementing and maintaining information security management systems for public cloud based online services Understanding of the challenges of information security compliance in complex, global organisation Function: Global Information Security Country: United Kingdom Office Location: Reading Location Region Berkshire

People also viewed