Senior IT Security Officer

Location
Windsor
Salary
£47000 - £50000 per annum
Posted
17 Mar 2017
Closes
14 Apr 2017
Ref
BE/01/092384
Contact
Ben Ellis
Clearance Level
None / Undisclosed
Job Type
Permanent
Senior IT Security Officer
Staines-upon-Thames, Surrey
£47,000 - £50,000 Basic

Summary of the role:

The Technical Security Officer is a member of the Information Security Team that resides within the IT Department. The Information Security Team focus on information and infrastructure security, access, authentication, monitoring, security policy development and on raising user awareness in support of the business and risk strategies.

The Technical Security Officer will report to the Head of Information Security and Compliance and will support the provision, implementation and on‐going support of an effective and efficient Information security service.

Our client is undertaking a major programme of infrastructure improvements, including Information
Security and this role has been developed to support these new initiatives.

The role holder will assist in the development, delivery and monitoring of the information security
strategy to optimise the security position of the organisation.

Ensuring the security of the ICT infrastructure has become increasingly complex and critical to
services and systems which underpin the successful operations of the organisation. Their continues to be heavy investment in network security to minimise the risk of compromising sensitive data, utilising services and systems such as Firewalls, Intrusion Detection and Prevention, Network Access Control and Security Information and Event Management System (SIEMS). The role holder will be expected to play a major part in the development of an appropriate security architecture and the implementation of suitable security policies, practices and procedures.

The post holder will be expected to take every opportunity to nurture cross‐team project working and to develop a culture of sharing knowledge and information throughout IT. The role holder will be expected to foster strong working relationships with key stakeholders. The role holder will be expected to assist in work with law enforcement during serious breaches of security or
investigations.

Summary of responsibilities:

-Support the Head of Information Security in the planning and development of an appropriate Information Security operational plan. Make a major contribution to the development of security architecture, services and systems.
-Support the delivery of the programme of Information Security Compliance, which will include Cyber Security Essentials and ISO27001.
-Identify and evaluate opportunities for the development of infrastructure security and promote a culture of continuous improvement within the team.
-Work collaboratively with other technical specialists across Information Services to ensure security, consistency, continuity and integrity of all IT services and systems.
-Author and maintain Information Security Policies and Procedures.
-Play a key role in the delivery of IT projects delivering high quality innovative approaches to
information security as identified.
-Play a key role in security awareness training activities; lead or commission IT security risk assessments.
-Investigate reported breaches of information security and undertake investigations in line with procedures and as directed by the Head of Information Security.
-Stay abreast of information security issues and regulatory changes; engage in professional development to maintain continual growth in professional skills and knowledge essential to the position.
-Devise new or revise procedures relating to security control of all IT environments, systems, products or services in order to demonstrate continual improvement in control including creation of auditable records, user documentation and security awareness literature.
-The role holder must be fluent at articulating best practice and is a recognised authority in the technical specialism.
-Deputise for the Information Security Officer as required and undertake such other responsibilities as determined by the Head of Information Security in conjunction with the post holder from time to time.

Work Hours

-During the week: Monday - Friday 9:00 to 17:00, flexible working arrangements as agreed with line manager.
-Bank holidays or w/e: Subject to a mutual agreement between the jobholder and their line Manager

Skills and Competencies

Technical

1.Experience in delivering solutions using new and emerging technology/policy and industry best practice
a. Managing resources (including external partners and staff) in order to deliver solutions in a managed timely process

2. In depth knowledge of information security landscape
a. Policy
b. IT Technology
c. Legal
d. Compliance
e. Security testing
f. Network, systems and application structures and best practice

3. Development methodologies and best practices

a. Experience of various development approaches (e.g. waterfall, spiral, RUP, Agile)
b. Experience with quality assurance procedures (e.g. testing, acceptance, source code control, configuration management, change management)
c. Ability to design a security ecosystem from given requirements specification and document the design produced to agreed standards.

4. Application Support and Troubleshooting Knowledge
a. Experience with using service desks (any package)
b. Experience of ITIL or service desk practices
c. Demonstrate a logical approach to service delivery

5. Ability to Write Documentation
a. Ability to write for various audiences
b. Ability to select appropriate document formats



LA International Computer Consultants Ltd is an HMG Approved Consultancy and operates as an IT & Engineering Consultancy or as an Employment Business & Agency, depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, we welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International Computer Consultants Ltd (Recruiter Awards for Excellence - Best IT, Best Public Sector & Gold Awards) and the most prestigious award that any business can receive The Queens Award for Enterprise: International Trade 2015.