Chief Information Security Officer | £90,000- £110,000 (DOE) | NIST Cybersecurity Framework | ISO 27001 | Bristol (Hybrid)
Role Overview
- The Information Security Officer will provide management, leadership and delivery of information security and compliance services. This role will be responsible for developing, implementing and maintaining a comprehensive risk-based information security program that aligns with the corporate program while at the same time addressing the specific needs of the business.
This role will also work in conjunction with the corporate Security team and the CISO, based in the US.
Key Responsibilities:
Facilitate the information security risk assessment process, including the reporting and oversight of treatment efforts to address negative findings. Work with stakeholders through the enterprise on identifying acceptable levels of residual risk. This can include both internal security assessments and assistance with third party software and other supplier assessments.
- Facilitate the implementation and adherence to IT aspects of the data retention policy.
- Provide information security subject matter guidance and expertise on architecture, design, software development, and other key operations and systems processes.
- Lead all vulnerability management related activities including the identification, prioritization and directing the remediation of security related vulnerabilities.
Skills and Qualifications
- Experience with ISO 27001/ISO27002, NIST Cybersecurity Framework, CIS Critical Security Controls, Cyber Essentials and Mitre Att&ck.
- Knowledge of modern disaster recovery and business continuity management concepts and leading practices for heavily virtualized environments.
- Experience with application security and secure coding practices.
- Experience in completing DPIAs in support of GDPR requirements.
- Knowledge of Windows and Linux operating systems.
- Hands on experience with security related tools such as SIEMS, IDS, network vulnerability scanners, application vulnerability scanners, anti-virus and forensic tools.
Why Apply?
- Be part of a forward-thinking company that values innovation and security.
- Work in a collaborative environment where your contributions make a real impact.
- Competitive salary and benefits package with remote working.
- Opportunities for professional growth and development.