5th October 2022
Information Security Consultant
Information Security
London
£70,000 - £75,000 per annum + annual discretionary bonus
Information Security Consultant
City of London (Hybrid)
£70,000 – £75,000 per annum + annual discretionary bonus
On behalf of London based Leader in the card payments industry, I m seeking a fully certified and experienced Information Security Consultant. Reporting to the Principal Information Security Consultant, the role requires a level of interaction with business areas, including IT Operations and Operations. This position also requires inter-IT cooperation.
The Information Security Consultant is expected to have a thorough understanding of Information Security Governance and Assurance frameworks and stay up to date with the latest industry standards and financial regulatory bodies as well as best practice security consultancy guidance.
Responsibilities:
- The Information Security Consultant is responsible for ensuring organisational assets are secured appropriately based on their importance to the organisation.
- This is an information security consultancy role that supports the function of Enterprise Security Architect team.
- The Information Security Consultant will develop and implement information security governance and consultancy to address the current and emerging information security and compliance requirements of the business.
- Provide advice and guidance on how to minimise the impact of potential threats to assets and services
- To liaise with potential or current partners and suppliers to evaluate the information security levels of the company or services
- Support compliance actives for regulators and contractual requirements
- Management of information security policies and standards
- To ensure controls implemented in production systems are operating as designed to mitigate known risks
- Governance reports on the effectiveness of controls to internal and external stakeholders
- Aware of current and possible future trends in the information security landscape and the impact on the Bank’s policies and standards
- Adherence to standards, including ISO27001 and Information Technology, PCI-DSS and Infrastructure Library (ITIL).
Experience/skills required:
- 5+ years’ experience in an Information Security Consultant capacity preferably within a financial services organisation.
- Applied knowledge of industry best practices including NIST, PCI DSS, ISO27001 and any other applicable standards
- Strong interpersonal skills and the ability to interact with senior members of the business
- Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM)
- 3+ experience with regulatory compliance and information security management frameworks (eg, IS027000, COBIT, NIST 800, etc.).
Consultant - Brendan Connolly
Telephone: 0207 392 7512
Email: brendan.connolly@spencer-rose.com
Share This Position
