Risk & Compliance Officer
Responsibilities include:·Managing Information Security Incidents as per Information Security Policy·Running regular and ad-hoc software audits and reconciling regularly to the licensing and proof of entitlement databases for compliance with FAST certification·Providing governance and oversight for the Information Security Policies and Procedures·Reviewing and improving ISMS roles and responsibilities in line with the changing landscape of the organisation·Providing compliance advice when requested and ensure that all policies and procedures remain within appropriate levels of compliance and advise on any non-compliance identified·Approving Information Security and compliance aspects of projects, new applications and systems ·Developing and communicating information security and Data Protection training based on the responsibilities of business functional departments·Establishing communication strategies that enable information flow between the Risk and Compliance function and the rest of the business, as well as maintaining good communications with third party contemporaries and all areas of the organisation·Contributing to process development and improvement within the business. ·Working with business areas to ensure that all new initiatives, projects, services, products, processes and procedures are compliant with legal and regulatory requirements
The successful applicant will already meet level 6 of the QCF framework which equates to a degree with honours. It is a requirement of the job that the jobholder already has or is prepared to study for a relevant risk management/Information Security qualification.They will also need: ·Two years + experience of management and governance of an ISO 27001 certification including recertification.·Excellent working knowledge of ISO 27001·Knowledge of other FAST and ISO standards in relation to information security and business continuity·Effective negotiation and influencing skills·A good understanding of roles and responsibilities associated with a complex ISMS.·The ability work towards overall business objectives through collaboration and cross-functional networking
Due to the large number of responses we receive it is not always possible to respond to every application. We will only contact those candidates short-listed for this role. If you have not heard from us within 7 days please assume you have been unsuccessful on this occasion. If you wish to apply for further roles please do so. We will retain your details on file and contact you should a suitable vacancy become available.
This job was originally posted as www.totaljobs.com/job/76687836