1676 jobs - 64 added today
174056 registered Jobseekers
Recruiting? Call us on
Posted 11 days ago
Apply on company site
Location:
UK
Job type:
Permanent
Category:
Information Security Officer – Bristol or Taunton

Vacancy details

An Information Security Officer role offering a significant level of autonomy and responsibility for the data security of a national law firm.

Role: Information Security Officer

Location: Bristol or Taunton

Hours: Full time

Term: Permanent

Vacancy Reference: 594-BBL

The role

This is a role established to recognise the importance that Clarke Willmott places on compliance to data security principles. You will report to the Head of Information Security & Data Protection and be responsible for a number of important functions within the Information Security & Data Protection Team.

* Provide advice, guidance and practical implementation solutions for all aspects of information security relating to business processes

* Undertake the rolling internal information security audit plan across all support functions and client facing teams

* Undertake information security due diligence on all new suppliers and manage ongoing review process for existing suppliers

* Take the lead in running the Firm’s information security risk assessments and assisting control owners in developing appropriate risk treatment plans

* Respond to tenders and client queries regarding information security risk management, governance and business related processes

* Monitor information security threats and upcoming legislation and provide advice to the Head of IS & DP on the risk they present to the Firm

* Manage or assist in managing information security incidents depending on severity

* Develop and maintain information security awareness training and feed into the overall IS & DP training programme

* Assist with drafting new policies and amending those that already exist to ensure the firm’s compliance with law, regulations and information security best practices

* Manage the Firm’s PCI DSS attestation and compliance activities

* Provide general information security support and advice with project work and other tasks as they arise

* Keep up-to-date with all the latest regulatory changes through reviewing relevant legal updates at least weekly

* Drafting Standard Operating Procedures (SOPs) where appropriate to ensure smooth running of future processes

* An active member of the Information Security & Data Protection Team with attendance at regular meetings with the team to align priorities and provide updates on progress and providing support in absence of other team members

Preferably based in Bristol or Taunton, the role will involve a degree of travel to our other offices. We can provide a pool car where appropriate for your journeys.

It is an integral part of this role that you comply with data security and all firm policies and procedures.

About you

You will be looking for an opportunity to bring your passion for information security to a place eager for continual improvement. Alongside your experience in information security, you may have already held roles as an ISO 27001 IS Officer, a PCI DSS Officer, and have some of the following qualifications:

* ISO 27001 Lead Implementer or Auditor Level

* Certified Information Security Auditor (CISA) or Manager (CISM)

An understanding of IT would also be a real advantage, but essentially you will have an aptitude for logical thought, analysis and detail, with the ability to grasp quickly new concepts and absorb large amounts of data.

You will also be a pragmatic problem solver, producing strategies and solutions which work in the real world, enabling us to run our business effectively without comprising our, or our clients’, data security.

With the confidence and calm assertiveness to stand your ground where necessary, usually you will achieve change and compliance through your influence, persuasion and leadership qualities.

You will be looking for a new position with a good degree of autonomy, where your ideas and drive will be welcome and you can really make a difference.

If you would like to apply for this vacancy, please send us your CV, together with a covering email/letter using the apply button.
Information Security Officer – Bristol or Taunton

Vacancy details

An Information Security Officer role offering a significant level of autonomy and responsibility for the data security of a national law firm.

Role: Information Security Officer

Location: Bristol or Taunton

Hours: Full time

Term: Permanent

Vacancy Reference: 594-BBL

The role

This is a role established to recognise the importance that Clarke Willmott places on compliance to data security principles. You will report to the Head of Information Security & Data Protection and be responsible for a number of important functions within the Information Security & Data Protection Team.

* Provide advice, guidance and practical implementation solutions for all aspects of information security relating to business processes

* Undertake the rolling internal information security audit plan across all support functions and client facing teams

* Undertake information security due diligence on all new suppliers and manage ongoing review process for existing suppliers

* Take the lead in running the Firm’s information security risk assessments and assisting control owners in developing appropriate risk treatment plans

* Respond to tenders and client queries regarding information security risk management, governance and business related processes

* Monitor information security threats and upcoming legislation and provide advice to the Head of IS & DP on the risk they present to the Firm

* Manage or assist in managing information security incidents depending on severity

* Develop and maintain information security awareness training and feed into the overall IS & DP training programme

* Assist with drafting new policies and amending those that already exist to ensure the firm’s compliance with law, regulations and information security best practices

* Manage the Firm’s PCI DSS attestation and compliance activities

* Provide general information security support and advice with project work and other tasks as they arise

* Keep up-to-date with all the latest regulatory changes through reviewing relevant legal updates at least weekly

* Drafting Standard Operating Procedures (SOPs) where appropriate to ensure smooth running of future processes

* An active member of the Information Security & Data Protection Team with attendance at regular meetings with the team to align priorities and provide updates on progress and providing support in absence of other team members

Preferably based in Bristol or Taunton, the role will involve a degree of travel to our other offices. We can provide a pool car where appropriate for your journeys.

It is an integral part of this role that you comply with data security and all firm policies and procedures.

About you

You will be looking for an opportunity to bring your passion for information security to a place eager for continual improvement. Alongside your experience in information security, you may have already held roles as an ISO 27001 IS Officer, a PCI DSS Officer, and have some of the following qualifications:

* ISO 27001 Lead Implementer or Auditor Level

* Certified Information Security Auditor (CISA) or Manager (CISM)

An understanding of IT would also be a real advantage, but essentially you will have an aptitude for logical thought, analysis and detail, with the ability to grasp quickly new concepts and absorb large amounts of data.

You will also be a pragmatic problem solver, producing strategies and solutions which work in the real world, enabling us to run our business effectively without comprising our, or our clients’, data security.

With the confidence and calm assertiveness to stand your ground where necessary, usually you will achieve change and compliance through your influence, persuasion and leadership qualities.

You will be looking for a new position with a good degree of autonomy, where your ideas and drive will be welcome and you can really make a difference.

If you would like to apply for this vacancy, please send us your CV, together with a covering email/letter using the apply button.
Select how you want to share: