Job Description

Our financial services based client in Canary Wharf is looking for a graduate with an IT related degree and some relevant work experience under their belt, who has a keen interest in information security and technology.

The Information Security team within the compliance function is accountable for the development, implementation and on-going maintenance of the three ISMSs (Information Security Management Systems) across the corporation and its two key suppliers, all certified to ISO 27001 and acts as the body responsible for ensuring Data Protection Act compliance across the board.

You will report to the Head of Information Security and be responsible for operating the ISMS processes in line with the Information Security Policy, Standards and Procedures in-order to maintain ISO 27001 compliance.

The role is responsible for delivering the day to day operation of the ISMS procedures in line with ISO 27001 and the information security policy, procedures and standards under the guidance from the Head of Information Security.

The role is responsible for delivering a number of security related deliverables as required under the ISMS and ISO 27001, including;
Production of reporting for senior management including the Head of Information Security and Data Protection, Director of Compliance, Chief Risk Officer, Executive Board, Risk Committee and NEST Governing Body.
Conducting Risk assessments on business or technical change, to identify and assess risk, identify treatment options, then present to management for decision.
Production and execution of an Information Security Awareness plan, measuring the effectiveness of initiatives to ensure that there is an appropriate awareness within the business.
Tracking and reporting on metrics, KPI`s and Key Risk Indicators that track the effectiveness of the ISMS.

Experience and Technical Skills
The successful candidate will be able to demonstrate the following experience and technical skills;
Basic understanding of information security for businesses.
Basic understanding of risk management and control frameworks.
An understanding of Waterfall and Agile project management methodologies. - ITSM practices.
IT concepts and architectures (Cloud, BYOD, Web Applications and Services).
Security tools and technical controls.
Personal Attributes Required
- Excellent team work and communication skills.
- The ability to cope with multiple tasks and projects at any given time.
- The ability to influence senior stake holders.
- The drive to develop information security knowledge and progress within the discipline.

This role will suit a degree holder in IT who has ideally already had some work experience in a similar role