Information and Security Officer
| Posting date: | 19 April 2024 |
|---|---|
| Salary: | £39,150 to £43,280 per year |
| Hours: | Full time |
| Closing date: | 06 May 2024 |
| Location: | Lowestoft |
| Company: | Government Recruitment Service |
| Job type: | Permanent |
| Job reference: | 350185/1 |
Summary
This role requires a certain amount of autonomy, with the postholder acting on their own initiative, within set parameters, making decisions around work priorities and resolving, often complex issues. Supporting the Head of Risk, Security and information with managing and motivating staff in this area, the role will require good interpersonal and communication skills.
The role will require a good technical understanding of information management, Business Continuity and information security risk management.
The post holder may be required to perform duties other than those given in the job description. The duties and responsibilities attached to the post may vary from time to time without changing the general character of the duties or the level of responsibility entailed.
This post requires the ability to obtain and maintain National Security Vetting at SC Level (please see National security vetting: clearance levels - GOV.UK (www.gov.uk).
Cefas is proud of a diverse and inclusive work environment, committed to fairness and the promotion of equality of opportunity for all. We know that having a range of experiences, backgrounds, ways of working and thinking, makes us a stronger organisation, better at reflecting the communities we serve. We embrace different views and experiences and value the fresh perspective that people from a variety of circumstances bring to the work we do. We welcome applications from candidates who have not previously worked for the Civil Service, mid- and late-career changers with transferable skills, people from all backgrounds and circumstances regardless of disability, gender, age, ethnicity, LGBT+ identity and socio-economic status.
Welcome to Cefas (youtube.com)
The Post Holder will be the lead for Information Security Management System, this will include (but not limited to); working with Information Asset Owners to assess and manage risks to Cefas critical information assets, and responsible for maintaining and managing the accreditation cycle of those critical information assets, managing Business Continuity, Incident Management and Disaster Recovery planning, exercising and activation of those plans.
The Post Holder will work closely with the IT Services Group to ensure cyber security actions are completed and mitigating controls are in place and working.
The post holder will manage aspects of Records Management, Data Protection Management, and Freedom of Information Management, which will include (but not limited to), Defining and managing classifications and record types, managing and improving records management within Cefas, ensuring full retention period activation for stored electronic and paper records, managing Cefas compliance with the Data Protection Act. Collaboration with Defra - Records Management, Data Protection, and Freedom of Information teams, to develop, maintain and promote best practice. Creation, updating and promotion of the Information Management and Security Teams policies and PAG’s.
The post holder may be required to perform duties other than those given in the job description. The duties and responsibilities attached to the post may vary from time to time without changing the general character of the duties or the level of responsibility entailed.