Skip to main content

This job has expired

You will need to login before you can apply for a job.

Information Security Consultant & Business Continuity Consultant

Employer
Barclay Simpson.
Location
London, United Kingdom
Salary
Competitive
Closing date
30 Apr 2021

View more

Job Description
Information Security & Business Continuity Consultant required for global telecoms firm. You will be responsible for ensuring all security risks pertaining to business delivery and business continuity are managed end to end. You will be expected to engage frequently with business leaders to identify, analyse and mitigate security risks and review business continuity plans whilst supporting the business on security requirements and compliance.

Your main focus will be on planning, establishing, developing, managing and implementing a security governance, auditing, business continuity, risk and compliance framework that meets external and internal stakeholder expectations and is aligned to best security practice, as well as to regulatory and legislative requirements. The role is also responsible for cloud security governance and requires a working knowledge of AWS and Azure

Responsibilities:

• Identify and evaluate risks; understand business context and prepare reports and recommendations
• Perform annual Security Risk assessments and conduct related ongoing organisational compliance monitoring activities
• Identifying cloud-related risks and related business impact
• Identifying risk mitigation approaches (actions, phases, manual efforts, etc.)
• Communicating risks in business terms for prioritization
• Conduct technical risk assessments for software development & application integration identifying risk to infrastructure
• Work with all functional business areas to develop and maintain a corporate wide BCP program that addresses business recovery and emergency response management
• Define, establish and implement organizational information security processes, to ensure business, regulatory, legislative and contractual requirements and obligations are met.
• Implement internal and external ISMS audit processes, audit plan, monitor effectiveness of controls and corrective actions in cooperation with the stakeholders across the organization.
• Manage gap analysis, compliance readiness, and compliance monitoring activities for ISO/IEC 27001, SOC2 and other regulatory security audits.
• Coordinate external security audits, assessments and testing as well as remediation plans development and implementation.
• Identify, assess and monitor information security risks and recommend mitigation measures.
• Develop content, coordinate and facilitate a comprehensive organizational information security awareness training program.
• Manage security requirements with third parties, including due diligence of products and services providers and information security requirements clauses in service provision agreements and contracts.
• Develop, coordinate and maintain information security policies, procedures and other security related documents.
• Analyze, map and communicate information security requirements, that derive from legislative and regulatory obligations in various jurisdictions.
• Partner with Legal team to ensure compliance with regulatory security requirements.
• Continually improve and update knowledge to accommodate changes to the company's regulatory environment and needs.

As an ideal candidate, you will have an industry certification such as CISSP/CISM/CRISC. You will also have expert knowledge of information security risk (application & cloud infrastructure assurance) and strong knowledge of business continuity. You will also have a proven track record of delivery in a similar role. Experience within telecoms is highly advantageous.

Get job alerts

Create a job alert and receive personalised job recommendations straight to your inbox.

Create alert