Information Security Officer

Job Title Information Security Officer
Sector Cyber Security
Location Manchester
Type Permanent
Salary Confidential

Information Security Officer

My client, a leading financial services provider in Manchester are actively looking to expand their security team as they look to embark on a number of long term projects, across the organisation. They are looking to bring in around 2 new team members in total and this will be across specialist areas such as; Project Assurance. Ideally you will have a strong technical understanding, coupled with experience working across multiple standards such as NIST/ ISO27001.

The role

  • Lead risk & control assessments using defined processes, for example external supplier due diligence, privacy impact assessments and project security.
  • Represent Information Security with Business stakeholders as a trusted advisor, finding pragmatic and cost-effective security solutions that efficiently support customer needs.
  • Act as a specialist owner of 1 or more of the team's security processes systems or frameworks, maintaining specialist knowledge and continually evolving the process system or framework with reference to the bank's global and local system & process owners, regulation & good practice.
  • Provide appropriate specialist advice and interpretation of Information Security best practice and UK regulatory requirements to a range of different stakeholders as new products, processes and systems are developed
  • Lead assurance activities to assess the effective implementation and operation of systems and controls to manage the information security risks;
  • Respond to queries from our branches and other colleagues on information security to ensure effective risk management of information security;
  • Act as lead Duty Incident Manager on a shared rota basis to manage information security and personal data breaches in accordance with defined incident management processes, ensuring impacts and risks are appropriately identified, assessed and mitigated;
  • Deputise for elements of the reporting manager's role, on an ad-hoc basis, to cover absences, periods of increased workload, etc.

Key Skills:

  • Solid, practical and demonstrable experience of information security (technical and non-technical aspects), including good understanding of privacy
  • plan, organise and prioritise tasks and projects effectively
  • pragmatic, and effectively balances risk and control requirements with commercial drivers
  • ability to solve problems creatively and effectively
  • positive, collaborative and builds and maintains effective relationship with others
  • Able to influence decision making to surface and mitigate issues and risks across a wide range of stakeholders
  • CISSP


Apply for this position: