Description
Excellent opportunity for an experienced Information Security mMnager ( GDPR, PCI - DSS ) to join a prestigious leader in the Hospitality and Leisure industry, based in Esher ( near Chessington, Kingston, Epsom, Cobham, Leatherhead, Surbiton ) working 2-3 days a week for 4-5 months.. Reporting in to the Group IT Director, the role covers data protection, information security and other BAU activities.Main Duties and Responsibilities
Consulting on new websites project to ensure compliance with GDPR and data assurance
Reviewing third party support contracts to ensure GDPR readiness, perform audits as necessary, provide a report of outcomes to the Group IS Director
Consulting on data assurance and GDPR compliance of new CRM project
Carrying out training on data assurance to staff appropriate to their role
Completing risk assessment using vs Risk, report outcomes and recommendations to Group IS Director and the board, as required
Scoping and managing any projects arising from the risk assessment process
Managing the roll-out of laptop and portable media encryption to the group
Overseeing penetration testing and take follow up actions as required
Attending CAB meetings and advising on change requests
Consulting on any new projects which involve data
Logging and action any data subject access requests in accordance with current legislation along with the data owner, confer with the ICO as required.
Main Skills and Experience
Information security experience
GDPR, PCI-DSS, ISO27001experience
Risk management
Good understanding of IT infrastructure
Excellent communication skills - written and verbal