Information and Cyber Security Lead

Recruiter
Location
Birmingham
Salary
Negotiable
Posted
12 Apr 2018
Closes
10 May 2018
Ref
50191329
Clearance Level
None / Undisclosed
Sector
Security
Job Type
Permanent

Information and Cyber Security Lead

Urgent requirement for an Information and Cyber Security Lead to work with our client in Birmingham. Our client is looking for someone to lead on information security assurance and risk management, ensuring that the organisations IT systems are designed and operated in a way that keeps information safe and secure.

 

As the Information and Cyber Security Lead your main responsibilities will include;

  • Providing accurate advice and guidance on information security and to support Tier 1 contractor information security management teams where required.
  • Assure and update of internal information risk documentation and ensure that project sponsors and contract delivery partners produce these where appropriate.
  • Ensure the maintenance of information risks on a corporate risk register. Provide advice on security strategies to manage identified risks.
  • Lead on the assessment of any changes to the client systems
  • Obtain and act on vulnerability and threat information, including cyber threat intelligence to conduct security risk assessments for business applications and computer installations.
  • Leading on the mitigation strategies post security incident and factor lessons learned from security incidents into IT security policies and processes.
  • Ensure that the IT security policy is updated as IT security threats evolve.
  • Developing, implementing and enforcing suitable and relevant information security policies, standards and procedures which are reviewed on a regular basis.
  • Experience of IT architectures and concepts, Cloud, BYOD and Mobile Device Management; OWASP vulnerabilities, tools and methodologies; Security Testing, DPA and ISO27001

Experience and Qualifications;

  • Senior stakeholder engagement and management and the ability to deal with external security partners, such as security authorities and agencies
  • Working knowledge of the HMG Security Policy Framework (SPF), governance of Information Assurance within the public sector and of ISO27001:2013.
  • Current certification to CISSP, CISM or CESG Certified Professional, or other information security qualification of similar standing.
  • Experience of IT architectures and concepts, Cloud, BYOD and Mobile Device Management; OWASP vulnerabilities, tools and methodologies; Security Testing, DPA and ISO27001

We are an equal opportunities employer and welcome applications from all suitably qualified persons regardless of their race, sex, disability, religion/belief, sexual orientation, gender reassignment, marriage and civil partnerships, pregnancy or maternity or age