Location: London (hybrid)
Salary: £75,000 - £85,000
The Role
We employ over 6,000 professionals, in over 85 offices, across 46 jurisdictions throughout the Americas, Europe, Middle East, and Asia Pacific.
What you will do:
We are looking for an Information Security Officer to be based in London. They will be reporting to the Global Information Security Manager based in London.
The Information Security Team is responsible for Information Security across the Group’s, acquisitions, functions, and brands. Your role will be key in bringing effective security globally and supporting Group-wide information risk reduction.
The focus will be on owning the tactical and operational implementation of information security and contributing to strategic information security objectives and continuous improvement. This role will pay particular attention to the Business Continuity Management (BCM) global processes including Disaster Recovery (DR), Business Continuity Planning (BCP) and Testing along with Business Impact Analysis (BIA) for all of systems and applications.
Key Responsibilities Include:
• Be the focal point for Information Security within a global presence
• Drive the alignment to Group Information Security and Business Continuity Policy & Standards
• Support and undertake Internal, External, and Supplier audits for a verity of regions
• Proactively monitor, report, and support the business in managing information security risks
• Support Penetration Testing, Vulnerability Scanning, and Phishing exercises for the regions assets and tracking to closure any issues
• Coordinate Business Continuity / Disaster Recovery / Business Impact Analysis activities globally
• Coordinate and maintain disaster recovery policy, standards, emergency response procedures, measurement and reporting criteria
• Coordinating the development, training, and exercise of a recovery plan
• Establishing contacts/networks for recovery resources and support systems Implementing practices to further sustainability in strategic planning initiatives
• Validating accessibility and safety of all systems and applications
• Support wider Group activities in development of policies, processes, tools, and templates to efficiently deliver information security and ISO27001 certification.
• Support the Head of Information Security in operating and maintaining the Information Security Framework and the Information Security Group that oversees it.
• Provide security and risk consultancy on a range of IT and business projects, ensuring they are delivered with effective information security in mind
• Work closely with key stakeholders including the Technology, Compliance, Human Resources, and the wider Business to become a trusted partner
• Support and coordinate requests for both internal and external IT audits and in requests for proposals (RFPs).
• Support cyber-security training and awareness within the a verity of regions to increase staff security awareness
• Manage business continuity plans, ensuring annual testing and maintenance by relevant offices in the region.
Qualifications:
Experience, education and professional accreditations
• Bachelor's degree in Computer Science or a related field
• At least 5 years working experience in Business Continuity Management, Disaster Recover, Business Impact Analysis, IT Operations, Security Operations, Information Security, Cybersecurity area including auditing and testing
• Preferably with professional qualifications of CISSP, CISA, CISM, ISO27001, ISO22301
• Finance or Professional Services sector experience
• Strong interpersonal skill and good command of English language (written\verbal)
• Self-driven, motivated, and must be able to work independently as well as be a good team player