Banner Default Image

Liquid error: internal

Technical Infomation Security Risk Officer

  • Location

    Leeds

  • Sector:

  • Job type:

    Permanent

  • Salary:

    £0.00 - £60000.00 per annum + Up to £60K Plus Benefits

  • Contact:

    Sarah Copley

  • Contact email:

    Sarah@thebridgeit.com

  • Job ref:

    1783SC_1603200507

  • Published:

    about 1 month ago

  • Expiry date:

    2020-11-19

  • Consultant:

    ConsultantDrop

Technical Information Security Risk Officer

A prestigious global firm are looking to recruit an experienced Information Security Technical Risk Officer working across all business levels, to maintain and manage the firms wider information security risk framework , providing input in day to day activities and engaging with technical leadership and senior business management.

Responsibilities

* Lead Security risk assessments within projects, supplier engagements and IT change
* Ensuring security risks are managed in line with the firms risk policies
* Work with Suppliers to agree remediation plans and track remediation activities
* Communicate the security impact of technology risks, the approach to risk mitigation
and risk acceptance across all levels of the business
* Provide risk advisory services to technology and business groups
* Work with stakeholders, both technical and non-technical to enable a pragmatic
approach to applying security best practice
* Provide Security and Technical expertise during Information Security audits

Skills/Experience
* Experience in 3rd party supplier assurance and risk management (5+ years)
* Experience in technical risk management (5+ years)
* Experience in cloud security and risk, ideally arising from experience supporting cloud
transformation and migration initiatives
* Experience leading technical controls assurance testing
* Experience to be complimented by certifications e.g. CRISC, CISSP, ISO27001 Lead
Auditor, Data Privacy (e.g. CIPT) etc.
* Must have experience working within a highly regulated environment
* Experience educating colleagues in security supplier assurance and security risk
* Experience of Business Continuity Risk identification