|Recruiter:||Rise Technical Recruitment Ltd|
|Listed on:||12th October|
Head of Information Security
Information Security professional required to facilitate enterprise-scale organizations in delivering secure IT systems for this burgeoning Fintech organisation
Responsibilities for the role include:
Co-ordination of all ISMS and all associated documentation and materials to manage the Information Security audit and certification process (e.g. ISO-27001)
Providing governance within our ISMS to ensure compliance, including:
managing various Information Security projects and initiatives
ownership of our Information Security risk management processes
providing relevant MI to senior management and report regularly about ongoing security efforts and initiatives
working across the business to identify areas for continuous improvement and any compliance concerns
Day to day line management of a small team of Information Security specialists.
Management and timely execution of all day to day security procedures (security incident management, information transfer etc) allowing the business to operate efficiently in a secure manner.Providing assurance to the security architecture and design patterns for all IT and Cloud systems deployed and used by the client.Providing subject matter expertise and a point of escalation for any requests for information from parties who have an interest in our ISMS.Manage our supplier assurance process, including pre and post-contract assessment of suppliers.
Successful candidates will have the following:
An industry recognised certification such as CISA, CISM, CISSP, or, for exceptional candidate, is working towards one of these certifications.
Experience in helping organizations achieve and maintain ISO-27001 accreditation.
Demonstrated capability at maintaining relationships with senior stakeholders (internal and client), explaining security concepts and taking a pragmatic but robust approach to security risk management.
Experience managing multiple projects simultaneously and is comfortable with regular context-switching.
Experience growing and maintaining a security team, mentoring, and focusing on career development.
A pragmatic approach to security and compliance.
Experience in providing Infosec assurance to technical teams implementing:
company and BOYD device security
cloud computing platform security
supplier provided SaaS systems
application security and the SDLC for proprietary/bespoke software product development
monitoring systems and procedures to ensure compliance in a cloud-based environment.
Contact Name: Neil Thompson
Job ID: 2861733