Job Ref: 213522919

Date: 2021-04-12 12:09:37

Apply Now

Our market-leading client is looking to secure the services of a Information Security Officer to join their team based in Milton Keynes on a permanent basis.

This role is a hands-on technology based one which involves working closely with the business to ensure that information is used in a secure and appropriate manner. Duties will include investigating information security incidents, ensuring adherence to the company information security policies and procedures in accordance with ISO 27001, reviewing and updating security policies, rules and procedures, involvement in the implementation of new security related technologies, participation in penetration testing and the maintenance of information security risk registers.

Key responsibilities of a Information Security Officer will include:

* Identifying potential vulnerabilities in our ICT infrastructure and working alongside the wider IT team to rectify any identified risks.

* Working with the wider IT team to continually improve the security our ICT infrastructure.

* Information Security policy maintenance in Microsoft Defender for Office 365.

* Information Security policy compliance measurement and risk assessment.

* Management of the information security risk register.

* Recording any security incidents in our ticketing system and following those tickets through to resolution and ensure that measures are in place to avoid any repetition.

* Working with the Compliance Team on maintaining our internal information security policies and procedures related to the ISO 27001 ISMS.

* Involvement with internal and external ISO 27001 and ISO 22301 audits, including meeting with auditors and providing evidence as requested.

* Coordinating and reviewing penetration tests on the ICT infrastructure and applications.

* Keeping up to date with developments in IT security, including new threats and changes in standards over time and suggesting improvements to the general information security posture.

Skills & experience of a Information Security Officer:

* 3+ years experience in a similar role

* A technical IT background

* Proven experience of cloud security and the associated risks

* Understanding and experience of security architecture

* Demonstrable experience of the ISO 27001 (ISMS) and Cyber Essentials frameworks

* Experience of performing security investigations using tools for email and IM recovery.

* Experience of working with policies in Microsoft Defender for Office 365, including Advanced Threat Protection policies

* Experience of working with third parties to evaluate and arrange penetration testing of ICT infrastructure and applications.

Our client is built on diversity. Their ambition is to build an inclusive culture where diversity is embraced, and everyone feels safe, respected, valued and able to thrive as part of a winning, engaged team.

As part of our recruitment process, you will be required to provide evidence of your right to work in the UK. Documentary evidence will be requested at the interview stage

Apply Now