The role is an integral part of the information security team, helping assist accompany which is a genuine leader in their industry adhere to and elevate their cyber security practice for a safer future.
In this role you will be part of an internal team of Information Security consultants making sure the business, projects, processes, etc. are adhering to the ISMS, relevant security standards, and best practices. You will have sufficient knowledge of technical security concepts and architecture that you are able to give pointed, direct advice to technical teams as required.
**Responsibilities**
- Advise and guide technical teams in adherence to information security standards, policies, regulations, etc.
- Work with project teams to ensure that security is built into new solutions from the get-go
- Identify relevant security risks within the business and help formulate strategies to address these
- Be a part of the development and implementation of information security, policies, procedures, and standards within the business
- Conduct risk assessments as required (internal and 3rd party)
- Be an advocate for cyber security education and best practice across the business
**Requirements**:
- Deep understanding of information security principals, standards, e.g. ISO 27001, NIST-CSF, etc.
- Strong technical knowledge/understanding (e.g. cloud security) and ability to advise technical teams when required. (you will not be hands on in this role)
- Ability to contextualise risks to stakeholders and influence their decisions in a security first manner
- Minimum approx. 4+ years in information security
Be a source of SME information security knowledge to the business, supported by a large team of experienced cyber secruity professionals