IT Security & Compliance Specialist (Information Security)


My client a FTSE 100 organisation in London, is looking for a IT Security & Compliance Specialist (Information Security), to oversee operational security and compliance operations within the business at a group level.

Client Details

FTSE 100 organisation.

Description

My client a FTSE 100 organisation in London, is looking for a IT Security & Compliance Specialist (Information Security), to oversee operational security and compliance operations within the business at a group level.

Your main duties will be, to form key controls around Security & Compliance across IT processes in the technology landscape, as well as managing the day to day operational security elements within the division. This is therefore a fifty fifty split role, with the ability to be hands on technically where necessary.

This includes; but is not limited to, PCI DSS Compliance, Business Continuity and Information protection, Security Incident response (SIEM), Vulnerability and Penetration testing of the web estate.

Main Duties & Responsibilities:

  • Conduct regular vulnerability & penetration testing across all public facing websites, working with web teams & 3rd parties to remediate any vulnerabilities.
  • Security and Risk assessments across vendors & IT Systems.
  • Creation and implementation of Standards related to security & compliance policies.
  • Monitoring and Reporting of relevant business IT Systems for security and compliance best practises.
  • Security & Technology Minimum Expected Practises self-assessments.
  • Plan and coordinate PCI compliance assessments.
  • Working with the Group Compliance team to implement key regulatory compliance around data protection.
  • Manage security awareness campaigns within the division.
  • Work actively with both technical and non-technical teams to ensure adoption & maintenance of Information Security related activates.
  • Represent the business at the cross-divisional Information Protection Management Forum.
  • Work with internal audit to conduct compliance and security assessments; analyse audit findings to improve compliance and governance of IT controls as well as coordinating remediation activities within the IT Teams.
  • Implement and maintain Business Continuity Plans across the business.

Profile

Candidates Profile:

Essential:

  • Technical IT Security background including information protection and security incident response (SIEM).
  • Experience of conducting regular vulnerability & penetration testing across all public facing websites, working with web teams & 3rd parties to remediate any vulnerabilities.
  • Clear and abiding interest in information security.
  • Good understanding of PCI DSS, Data Protection Act, ISO27001, ISO27002.
  • Knowledge of data protection policies, procedures, and products.
  • Ability to take to the lead in identifying areas for improvement and recommending how to improve them.
  • Ability to work across a global business and time zones.

Desirable:

  • A degree from an accredited university in computer science or relevant information security, IT operations or programme management experience.
  • Working knowledge of Service-Now Service management tool.
  • Security certification (SSCP, CISSP, CISM)

Job Offer

The salary on offer for the IT Security & Compliance Specialist (Information Security) role is between £60,000 - 70,000 and based in London. It comes with a competitive package including 15% annual bonus and the attractive option of flexible working.

Job reference information
Advertiser Michael Page Technology
Contact Name Luke Pulsford
Telephone +44 207 269 2241 (Please reference Dice when calling)
Reference 13804517/001_1489998843

More jobs like this

search