Principal Information Assurance Officer

Social network you want to login/join with:

col-narrow-left

Bicester, United Kingdom

Other

-

Yes

col-narrow-right

df2dacde9730

5

02.06.2025

17.07.2025

col-wide

JOB DESCRIPTION: As part of our Kuehne+Nagel Government and Defence (KNGD) contract, we have an exciting opportunity to be part of something very special. We are looking for a Principal Information Assurance Officer who will ensure that Kuehne+Nagel complies with the appropriate IT Security Policies and Procedures.

Your Role

As the Principal Information Assurance Officer, you will play a pivotal role in maintaining compliance with customer’s information security frameworks, standards, and ISO 27001. You will provide expert advice, guidance, oversight, and supervision of information security controls and systems to protect the availability, integrity, and confidentiality of customer and company assets both in storage and in transit. Acting as a Subject Matter Expert, you will provide advice and guidance on a wide variety of information security issues to ensure the contract meets all relevant obligations. The role will be primarily located at our site in Donnington, Telford, but is suitable for hybrid working with commitments to travel to Donnington and other locations as required.

Your Responsibilities

• Develop and maintain documentation, guidelines, standards, processes, policies, and relevant material in line with ISO27001 and customer security frameworks and standards.
• Input into Business Continuity/Disaster Recovery strategies regarding information security (ISO 27001 and ISO 22301) requirements.
• Plan and implement company-wide information security training and awareness programs.
• Manage security incidents and conduct security reviews and audits.
• Lead internal and external security audits, work with external auditors to address findings.
• Keep personnel informed about compliance, regulatory changes, and relevant news.
• Maintain accreditation of key systems using a six-step process.
• Lead investigations following security incidents and prepare reports.
• Lead Information Security Management meetings with technical experts.
• Maintain the Security risk register and perform risk assessments.
• Ensure the effectiveness of vulnerability management programs.
• Engage with external stakeholders to determine contractual, regulatory, or operational requirements.

Your Skills and Experiences

• Experience in Information Security.
• CISM or equivalent, membership of IISP or BCS desirable.
• Security+ Certification desirable.
• Experience with ISO 27001, preferably as a Lead Auditor or Implementer.
• Understanding of HMG security requirements (.Security Policy Framework, CPNI policies).
• Technical experience in Operating Systems, Application & Network security.
• Experience in building and maintaining an ISMS.
• Knowledge of Business Continuity/Disaster Recovery (ISO 22301).
• ITIL security management knowledge is desirable.
• Understanding of risk management lifecycle.
• Ability to gain HMG SC clearance or willingness to undergo vetting.
• Strong communication skills and stakeholder relationship-building ability.

Good Reasons to Join

If you join us, you'll be rewarded with a contributory pension, benefits scheme, employee assistance program, and support for living a healthier life. We are a forces-friendly employer recognizing the skills of service leavers.