Information Risk Management Consultant
- Employer
- Hays.
- Location
- United Kingdom, Stratford upon Avon
- Salary
- Competitive
- Closing date
- 9 Nov 2022
View more
- Sector
- Consultancy
- Job Role
- Cyber Security Consultant
- Job Type
- Permanent
You need to sign in or create an account to save a job.
Hays are working in partnership with a national insurance company with offices across the UK.
The role sits within the risk department, working with various teams to assess and advice on security and data risks within the organisation.
Hybrid working pattern with one day a week in the Stratford-Upon-Avon office.
Your purpose:
Provide assurance that information security and data protection risks are managed across the organisation and contribute to the on-going improvement of risk management strategies, controls and mitigations designed to reduce risk exposure and ensure compliance with regulatory requirements.
Your experience:
The role sits within the risk department, working with various teams to assess and advice on security and data risks within the organisation.
Hybrid working pattern with one day a week in the Stratford-Upon-Avon office.
Your purpose:
Provide assurance that information security and data protection risks are managed across the organisation and contribute to the on-going improvement of risk management strategies, controls and mitigations designed to reduce risk exposure and ensure compliance with regulatory requirements.
- Provide expert technical advice, support and assurance to risk managers and practitioners in their responsibilities and obligations under the ISO 270017, Data Protection Regulations and PCI standards
- Collect, aggregate and analyse risk data from across the business relevant to the Cybersecurity and privacy risk profile within the organisation
- Work with the 1st line IT and Cyber Operations Team Security team to assess and report the systems patch levels, malware protection and penetration tests results
Your experience:
- Demonstrable knowledge of the Data Protection Act, GDPR legislation, ISO 27001:13 and NIST frameworks
- Excellent understanding of PCI compliance requirements and their practical applications within the business
- Demonstrable experience of incident management from a security and Data Protection perspective
- Recognised Information Security certification e.g. CISSP, CISM, CRISC
You need to sign in or create an account to save a job.
Get job alerts
Create a job alert and receive personalised job recommendations straight to your inbox.
Create alert