Information Security & Compliance Officer

As a rapidly expanding healthcare brand, we’re on the lookout for exceptional characters with a can-do attitude to join our outstanding team of visionary thinkers. If you truly want to create a positive impact on the world, Vivactive could be the place for you.

We seek the best and the brightest around to join our fast-paced, innovation-led environment where your intelligence, organisational and analytical skill set will come into their own.

Today, we’re looking to recruit an Information Security & Compliance Officer.

The ISCO is responsible for implementing, maintaining and overseeing information security and cybersecurity policies, procedures and controls to protect the organisation's digital information. You’ll work as part of the IT Team and closely with the senior managers of all other departments in the business to ensure proactive protection against cyber threats, regulatory compliance, risk management and response to security incidents.

Your core duties and responsibilities will evolve, but will include:

• Evaluating and enhancing existing IT systems, management policies, procedures and security protocols to ensure robust protection
• Reviewing daily, weekly, monthly etc. logs and reports, taking any relevant action
• Creating and delivering security and data training packs/modules for all staff members with sign-off tracking
• Working with other departments, creating and maintaining a business continuity and incident response plan
• Keeping all PCI DSS-related evidence available and up-to-date for the yearly SAQ submission
• Working with the IT Team to achieve Cyber Essentials and Cyber Essentials Plus certification
• Managing the on/offboarding process and procedure to ensure new starters have completed awareness training and that leavers have been offboarded correctly

As well as excellent verbal and written communication skills, as a successful candidate, you’ll need:

• Ability to work in a fast-paced office environment with the skills to multitask and prioritise workloads
• Being adept at policy and procedure creation, incident management, risk assessment and operational security
• Analytical and problem-solving capabilities with incredible attention to detail
• Outstanding research capabilities with reports that you’re proud to own
• Experience in supporting GDPR and PCI DSS Compliance
• Flexibility to change and adapt to the needs of the business
• Solid experience in ICT, with a strong technical grounding, with a people-first mindset

This role will build relationships with departments to ensure identification and continuous progression of security threats in our fast-paced technology-related business. This role blends operational security, threat intelligence and user education to support a robust security posture across the organisation.

If this sounds like you, apply with your C.V., current salary and covering letter explaining why you would be an excellent candidate