Security & Information Risk Advisor
| Posting date: | 13 April 2024 |
|---|---|
| Salary: | £590 per day |
| Hours: | Full time |
| Closing date: | 11 May 2024 |
| Location: | Edinburgh, Scotland, EH8 7AU |
| Company: | Pertemps |
| Job type: | Contract |
| Job reference: | 52584962 |
Summary
Job Title: Security & Information Risk Advisor
Contract Duration: ASAP - 12 months
Hours: 37 hours per week
Location: Hybrid - Edinburgh
Salary: £590 per day
Our client is looking for an experienced Security & Information Risk Advisor to join their team! Committed to excellence and innovation, they prioritize the security and integrity of their information assets. As part of their dedicated team, you will play a pivotal role in safeguarding their data and ensuring compliance with industry standards and regulations.
Duties:
- Formulate strong relationships between the Information Security and Risk function and business teams.
- Promote Information Security and Risk Services offered.
- Conduct technical assurance activities of systems, services, and products.
- Provide advice, guidance, and facilitation of information security processes.
- Assist stakeholders in understanding and fulfilling their information security roles and responsibilities.
- Communicate the requirements of Information Security Policies and Standards.
- Deliver sessions and workshops for the scoping, identification, and analysis of security risks.
- Discuss potential opportunities for improvement to information security policies, processes, or controls.
- Undertake internal audit/assurance activities to observe and evaluate ISMS processes and Security Controls.
- Contribute towards the development of Information Security and Risk policies, standards, and processes.
- Deliver education and awareness sessions to technical and non-technical teams to enhance information security and risk knowledge.
- Support internal stakeholders during independent audits through prior preparation of ISMS artefacts and records.
Essential Skills/Qualifications:
- Analytical skills
- Communication skills
- Awareness of Information Security organization operations
- Competency in Information Security and Risk Management
- Strategy Delivery
- Risk-Based Approach
- Specialisms in core Information Security Control attributes
- Secure Systems Engineering
- Candidate Requirements:
- The successful candidate will have a strong understanding and background in technical information security and risk. They must have the ability to engage with management and technical/non-technical SMEs for the successful implementation and operation of the ISMS and its associated deliverables.
- Certified Information Systems Security Professional (CISSP)
- Certified ISO 27001 Lead Implementer/Auditor of Management Systems
- The candidate should have knowledge and experience in risk identification, assessment, and management, security assurance, creation of ISMS documentation, audits, risk and threat modelling, compliance and assurance activities, and business process analysis.
To apply, please submit your CV!
Contract Duration: ASAP - 12 months
Hours: 37 hours per week
Location: Hybrid - Edinburgh
Salary: £590 per day
Our client is looking for an experienced Security & Information Risk Advisor to join their team! Committed to excellence and innovation, they prioritize the security and integrity of their information assets. As part of their dedicated team, you will play a pivotal role in safeguarding their data and ensuring compliance with industry standards and regulations.
Duties:
- Formulate strong relationships between the Information Security and Risk function and business teams.
- Promote Information Security and Risk Services offered.
- Conduct technical assurance activities of systems, services, and products.
- Provide advice, guidance, and facilitation of information security processes.
- Assist stakeholders in understanding and fulfilling their information security roles and responsibilities.
- Communicate the requirements of Information Security Policies and Standards.
- Deliver sessions and workshops for the scoping, identification, and analysis of security risks.
- Discuss potential opportunities for improvement to information security policies, processes, or controls.
- Undertake internal audit/assurance activities to observe and evaluate ISMS processes and Security Controls.
- Contribute towards the development of Information Security and Risk policies, standards, and processes.
- Deliver education and awareness sessions to technical and non-technical teams to enhance information security and risk knowledge.
- Support internal stakeholders during independent audits through prior preparation of ISMS artefacts and records.
Essential Skills/Qualifications:
- Analytical skills
- Communication skills
- Awareness of Information Security organization operations
- Competency in Information Security and Risk Management
- Strategy Delivery
- Risk-Based Approach
- Specialisms in core Information Security Control attributes
- Secure Systems Engineering
- Candidate Requirements:
- The successful candidate will have a strong understanding and background in technical information security and risk. They must have the ability to engage with management and technical/non-technical SMEs for the successful implementation and operation of the ISMS and its associated deliverables.
- Certified Information Systems Security Professional (CISSP)
- Certified ISO 27001 Lead Implementer/Auditor of Management Systems
- The candidate should have knowledge and experience in risk identification, assessment, and management, security assurance, creation of ISMS documentation, audits, risk and threat modelling, compliance and assurance activities, and business process analysis.
To apply, please submit your CV!