Information Security GRC Officer

Responsibilities:

1. Help oversee Altrata’s Information Security risk program and supporting processes
2. Facilitate Information Security risk assessments and actively identify risks to our organisation
3. Manage our project to implement ISO27001
4. Maintain and improve security documentation (policies, standards, FAQs etc.)
5. Take a leading role with our Business Continuity and Disaster Recovery programs
6. Prepare reports on the status of the information security program to senior management
7. Provide security awareness training to all business areas
8. Support third party risk management activities
9. Support with client assurance/due diligence requests

Ideal Candidate:

1. 5+ years in industry coming from a GRC background
2. Exceptional communication skills, managing and influencing stakeholders at all levels, including Executive Leadership
3. Experience running ISO27001 / SOC2 projects, demonstrating that you have experience in implementing security controls and maintaining security compliance in accordance with industry standards.
4. Experience managing Disaster Recovery/Business Continuity Plans/Tests and ensuring they are kept up to date and relevant for our clients and auditors
5. Strong understanding of information security risk management methodologies and processes
6. Experience in identifying, assessing, and managing security risks within an organisation.
7. Good understanding of security controls and how to use them to mitigate risks. This includes high-level knowledge of technical security controls as well as administrative controls such as policies and procedures.

Key Information:

1. Salary up to £70k with a competitive package
2. Remote working – option available to work on site in London
3. No sponsorship
4. Must pass background and reference checks
5. Certifications aren’t key but ISO27001 Lead Implementer or other relevant certifications would be desirable (CISA etc.)

#J-18808-Ljbffr…