Information Security Manager
An excellent opportunity has arisen as an Information Security Manager working for a leading Service Provider
We're looking for an Information Security Manager who has experience and understanding of IS027001, PCI DSS and ISO27001 information security standards, a good working knowledge of Security related legal and regulatory requirements, the ability to manage and deliver Projects through to successful conclusion. Also and excellent knowledge of using Microsoft Office, Visio and MS Projects would be advantageous.
You'll be part of a friendly Group Information Assurance team, working as an Information Security Manager, on site at one of our key strategic clients in London. You'll be responsible for ensuring Governance and Contractual Compliance for all security deliverables as well as making sure that the organisations Information Security Management System is maintained and the compliance of staff and policies, procedures, guidelines and standards used to support the effectiveness of the ISMS (Information Security Management System). You will also be expected to schedule and document all Security Governance Meetings; coordinate the production of all relevant reports and statistical analysis required for ISMS Management Review; coordinate the production of all relevant monthly reports and statistical analysis for services, SLA's & KPI's; maintain and update content of ISMS Action Logs (e.g. Security incident Log, Security CA/PA Log, Documentation Reviews) as well as maintaining the Information Risk Assessment.
You'll also work on anything from supporting all audits (internal, external & customer initiated), acting as a Liaison officer between Audit Bodies and stakeholders, assessing adequacy of Operational Security Procedures to undertaking annual risk assessments within scope of the ISMS based on the documented risk methodology; Identifying and agreeing mitigation with teams of stakeholders within the scope of ISMS as a result of risks identifies; identifying, documenting and agreeing acceptance of risk where appropriate with the risk owner as well as identifying; documenting and agreeing transfer or avoidance of risk where appropriate and ensuring transfer of mitigation of Action Log and progress actions in an appropriate timeframe. Above all, you'll have the resilience to take on a problem and see it through to successful conclusion.
This job was originally posted as www.totaljobs.com/job/77693035