Information Security Officer/ISO/Data protection/ISMS/PCI DSS

HW Search and Selection Ltd
London (Greater)
06 Nov 2017
15 Nov 2017
Contract Type
Full Time

Information Security Officer/ISO/Data protection/ISMS/PCI DSS

Information security office required to join a leading retailer based in South West London. The ideal candidate would have at least 1-2 years commercial experience within a similar role specialising in information security and have the ability to engage with the business.

This is a great opportunity for someone looking to gain exposure within a leading retailer gaining experience over the full InfoSec portfolio and business .

You will be guided by the senior Security manager and you will get to lead on new projects, there will also be the opportunity for (all the tools and programs can be taught)

Daily requirements

  • Documenting and managing risks related to IT systems and compliance with internal and external requirements including, but not limited to, ISO 27001:2013 - based ISMS, PCI DSS v 3.2 and Data Protection Act.
  • Engaging with departments both within the company and with relevant service providers/suppliers. Assessing, guiding and managing information security related risks, including coordination of penetration tests if required.
  • Articulate risk in technical and non-technical terminology so that it can be interpreted by IT and Business individuals alike
  • Implementation and audit of diverse range of Information Security policies within ISO 27001:2013 based Information Security Management System.
  • Carrying out periodic internal IT audit reviews of systems and processes. Reporting on control effectiveness and development of local policies in context of improving security posture.
  • Collecting, analysing and reporting on security Key Performance Indicators such as antivirus, vulnerability scanners and patch management.
  • Establishing and maintaining a strong network of connections within the organisation and continually contributing to the development and evolution of Information Security.
  • Keeping abreast of new threats within Information Security domain, in particular within the context of retail.

Key skills:

  • Practical experience in a business facing Information Security role
  • Keen interest in all things cyber security related
  • Technical background in networking, data bases or business applications
  • Excellent organisational skills
  • Ability to work both alone and as part of a team
  • Experience with conducting Service Provider Assessments
  • Awareness of standards such as ISO 27001
  • Computer Science degree and/or MSC in Information Security desirable but not essential



Plus benefits

This job was originally posted as