Description
Information Security and Risk ManagerLocation:- London, UK
Start Date:- ASAP
Rate:- £475 - £550 p/d
Contract:- 6 months
My client, a FTSE100 company, require an experience IT Security and Risk Manager to improve and maintain the current standards as well as regulatory requirements to minimise impact on their business.
Experience
- You will be able to demonstrate information security knowledge gained from extensive experience of professional practise across a number of the following areas of Information Security:
- Audit and / or implementation of an Information Security Management System (ISO27001) in medium- large sized organisation(s).
- Qualification at degree level in one related area of Information Systems, Information Technology or Computer Science
- Industry exposure to emerging risk and threat landscape
- Familiar with risk methodologies and framework for example: ISO31000, ISO 27005, and COSO Enterprise Risk Management
- Professional information security certification e.g. CISSP, CRISC, CISM or previous relevant security experience
- Information Security Risk Management Frameworks such as ISO27005, HMG IS1, ISO 31000 Framework
- Strategic thinking and decision making
- Excellent stakeholder management
- Ability to build robust relationships and to interact at all levels
- Ability to have a high level view of risks associated with control activities
- Experience in information security discipline including technical knowledge
- Knowledge of legal and regulatory environment (PCI, FCA, DPA)
- Ability to put complex issues in simple terms
- Strong impact, influencing and negotiating skills, at all levels
- Strong planning and organisational skills