Click Fraud Protection


Information Security Officer

Job Title: Information Security Officer
Contract Type: Permanent
Location: London
Salary: £90,000
REF: ASH16003SH_1497963558
Contact Name: Sheryl Hannan
Contact Email:
Job Published: almost 2 years ago

Job Description

The Ashdown Group have been engaged by a leading professional services organisation to assist them in their search for a Group Information Security Officer to join their successful team.

The role of the Security, Risk and Compliance Lead is to provide oversight of information assurance - setting high level strategy and policy, to ensure confidence is maintained against risks. This is specifically focused on the confidentiality, integrity and availability of information and systems, ensuring it is managed pragmatically, appropriately compliant and cost effectively.

You will carry out risk-based security health checks, maturity assessments and other reviews of the IT systems and infrastructure design. This role will require you to frequently develop policy, strategy and standards, and usually include working alongside various parts of the business. Additionally, in a project support role, you will form part of a team developing requirements, monitoring change and designing information solutions.

You would be the 'Security Lead', responsible for defining processes and deliverables as well as regulating costs and risk. You will be the business's subject matter expert and as such it is expected that you will have been through the design, implementation, operation and maintenance of an ISO27001 framework, with additional CISSP or CISM qualifications and a good understanding of CoBiT, ITIL and TOGAF.

You must have a strong understanding of 'information security' and a familiarity with current trends and recent developments in information security. You should take a holistic view of security issues but see security frameworks/processes at business unit or programme level.

You will lead all ISO27001 internal security audits. You must have a good understanding of security governance for information systems. You should understand and have experience of business and technical information security concepts such as risk management, standards, defence in depth, accreditation, BCM and manage training and awareness of staff.

On occasion you will need to articulate security advice directly to CIO or Director level stakeholders. It is expected that you will have excellent communication skills, both written and verbal, excellent presentation skills with the ability to present complex ideas to technical and non-technical audiences.

The role will be based in London and home with some travel and it offers a salary of up to £90,000 plus additional benefits. The client will hold interviews in early July.