Enable job alerts via email!
DIGITAL SECURITY - IAM - CYBERARK
Zensar Technologies
London
On-site
GBP 60,000 - 80,000
Full time
Yesterday
Be an early applicant
Job summary
A leading IT services provider in London is seeking an experienced Information Security professional to support the management of their Information Security Management System. Responsibilities include conducting risk assessments, evaluating cyber security controls, and collaborating with cross-functional teams. The ideal candidate has at least five years of experience in Information Security and is knowledgeable in frameworks like NIST CSF and ISO27001.
Qualifications
- Minimum of 5 years experience in an Information Security role.
- Hands-on experience with NIST CSF and ISO27001.
- Strong interpersonal and communication skills.
Responsibilities
- Support the Information Security Manager in system delivery.
- Evaluate cyber security controls across the business.
- Conduct comprehensive risk assessments using the NIST CSF.
Skills
Information Security
Cyber Security Assessments
Risk Management
Interpersonal Communication
Analytical Skills
Problem-Solving
Microsoft Systems
Job description
Job Description
Responsibilities
Essential Skills, Knowledge & Experience
Responsibilities
- Support the Information Security Manager in delivering the Information Security Management System and to drive continuous improvement for information security.
- Evaluate and assess cyber security controls across the business and its third party vendors to ensure compliance with the NIST Cyber Security Framework (CSF).
- Conduct comprehensive risk assessments using the NIST CSF.
- Use risk management techniques to identify cyber threats, risks and issues in a timely manner.
- Support, develop and conduct third-party vendor security assurance activities.
- Collaborate with cross-functional teams to develop and implement risk management activities.
- Respond to security support tickets and other enquiries; providing information security support and escalation.
- Support the creation and collection of metrics, validation of security control performance and the identification of emerging cyber risks.
- Collaborate with the Enterprise Risk Management (ERM) team to maintain, develop and deliver cyber risk reporting and appetite statements.
- Maintain Information Security policy and procedure ensuring content is relevant to the current cyber threat landscape.
- Maintain, develop and test the Cyber Incident Response Plan, ensuring content is relevant to the current cyber threat landscape.
- Monitor, maintain and manage Lancashire compliance with its relevant cyber security regulation obligations.
- Manage actions and output generated by stakeholder engagements; for example customers, regulators, internal and external auditors.
- Maintain currency with emerging security trends, threat intelligence, industry standards and good practice, and security enhancing technologies.
Essential Skills, Knowledge & Experience
- A minimum of five years of experience in an Information Security role.
- Experience working in a professional services environment
- Hands-on experience conducting cyber risk assessments and developing cyber risk mitigation strategies.
- Hands-on experience conducting cyber security control assessments.
- Hands-on experience developing and maintain cyber risk reporting and risk appetite statements.
- Hands-on knowledge and experience working with recognised security frameworks such as, NIST CSF, ISO27001 etc.
- Hands-on experience managing and maintaining cybersecurity compliance with regulatory frameworks such as FCA, PRA, NYDFS etc.
- Experience developing a governance framework by maintaining policy and procedure.
- Ability to achieve against agreed deadlines.
- Ability to work both independently and collaboratively.
- Strong interpersonal and communication skills (written and verbal), with the ability to interact with technical and non-technical stakeholders at all levels.
- Strong analytical and problem-solving skills.
- Strong organisation and planning skills.
- A pro-active and enthusiastic approach.
- Knowledge of Microsoft systems (on-premise and Azure cloud), technologies, infrastructure, awareness of systems management and operational support tools.
- Acknowledges and responds positively to exceptional events in information security to meet the objectives of the business.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
Land a better
job faster
job faster
Follow us
