IT Risk & Best Practice Manager
IT Risk and Best Practice Manager - up to £50,000
Your new company
Hays are currently working with leading national law firm to source a Risk and Best Practice Manager to work out of their Bristol offices.
Your new role
Will be to maintain the firm's Information Security management system, including the online Information Security Risk Register and associated Information Security policies and procedures. The role will have specific responsibility for improvement initiatives relating to ISO 9001 and 27001, including the project to upgrade to ISO 9001:2015. In addition, dealing with data breaches, including incident logging, root cause analysis, and addressing issues highlighted in line with legal and regulatory obligations to ensure continuous improvement. You would also be a central point in liaising with external ISO consultants and auditors, coordinating the firm's annual re-certifications and identifying improvements to the internal audit programme.
What you'll need to succeed
Ideally you will have a good understanding and practical experience of all aspects of obtaining, and maintaining quality standards specifically in relation to ISO 9001 (Quality Management) and ISO 27001 (Information Security). Good knowledge of the Data Protection Act and forthcoming General Data Protection Regulation (GDPR), especially on how the GDPR will impact on the firm's technology systems. Experience of Project Management within an Information Security environment. Strong stakeholder engagement and business partnering skills. Past experience from with a Law Practice is desirable but not essential.
What you'll get in return
A salary of up to £50,000 dependant on experience + company benefits such as contributory pension, life insurance, private medical, flexible working (subject to business needs) and a number of voluntary options.
What you need to do now
If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now.
If this job isn't quite right for you but you are looking for a new position, please contact us for a confidential discussion on your career.