Information Security Officer

Marcus Donald is looking for a driven and passionate Information Security Officer, to work within a prominent retail firm.

In this role, you will be responsible for managing the Information Security Governance, Risk, and Compliance (GRC) making sure they align with the ISO27001 ISMS frameworks.

Information Security Officer – Responsibilities:

• Lead in monitoring and managing compliance projects with security frameworks and regulations such as ISO 27001, PCI DSS, and GDPR.
• Provide expertise in risk management and the identification and management of security risks, ensuring they are assessed and reported.
• Design, review, and maintain security policies, standards, and procedures.
• Responsibility for managing third-party supplier security/compliance assessments.
• Coordinating internal and external security audits/reviews through delivery, evidence gathering, and reporting.
• Work with stakeholders and business units to identify and record details of data processing and advise on data lifecycle management (including identification, classification, retention, and deletion)

Information Security Officer – Requirements:

• CISSP/CISM or related qualifications.
• Knowledge of common information security management frameworks, such as ISO27001, and NIST.
• Awareness of secure development practices and how they integrate into product and project lifecycles
• Knowledge of Incident Response, Business Continuity / Disaster Recovery Planning, and testing.
• Compliance and regulatory requirements – PCI DSS, GDPR.

Information Security Officer - What we offer you:

Along with the Competitive salary, this role also offers great company benefits and the chance to work alongside a great organisation.

If you are interested in knowing more and would like a full job spec, please contact me directly via rsolan@marcusdonald.com