Accessibility Links

Information Security & Business Continuity Consultant

  • Location: London / Remote
  • Salary: £500 - £600 per day
  • Job type: Contract/Temp
  • Job reference: JEM / 172800
  • Sector: Cyber Security, Resilience , Technology Risk, Information Security
Job Description

Information Security & Business Continuity Consultant required for global telecoms firm. You will be responsible for ensuring all security risks pertaining to business delivery and business continuity are managed end to end. You will be expected to engage frequently with business leaders to identify, analyse and mitigate security risks and review business continuity plans whilst supporting the business on security requirements and compliance.

Your main focus will be on planning, establishing, developing, managing and implementing a security governance, auditing, business continuity, risk and compliance framework that meets external and internal stakeholder expectations and is aligned to best security practice, as well as to regulatory and legislative requirements. The role is also responsible for cloud security governance and requires a working knowledge of AWS and Azure.

Responsibilities:

  • Identify and evaluate risks; understand business context and prepare reports and recommendations
  • Perform annual Security Risk assessments and conduct related ongoing organisational compliance monitoring activities
  • Identifying cloud-related risks and related business impact
  • Identifying risk mitigation approaches (actions, phases, manual efforts, etc.)
  • Communicating risks in business terms for prioritization
  • Work with all functional business areas to develop and maintain a corporate wide BCP program that addresses business recovery and emergency response management
  • Define, establish and implement organizational information security processes, to ensure business, regulatory, legislative and contractual requirements and obligations are met
  • Implement internal and external ISMS audit processes, audit plan, monitor effectiveness of controls and corrective actions in cooperation with the stakeholders across the organization
  • Manage gap analysis, compliance readiness, and compliance monitoring activities for ISO/IEC 27001, SOC2 and other regulatory security audits
  • Coordinate external security audits, assessments and testing as well as remediation plans development and implementation
  • Identify, assess and monitor information security risks and recommend mitigation measures
  • Develop content, coordinate and facilitate a comprehensive organizational information security awareness training program
  • Manage security requirements with third parties, including due diligence of products and services providers and information security requirements clauses in service provision agreements and contracts
  • Develop, coordinate and maintain information security policies, procedures and other security related documents
  • Analyze, map and communicate information security requirements, that derive from legislative and regulatory obligations in various jurisdictions
  • Partner with Legal team to ensure compliance with regulatory security requirements
  • Continually improve and update knowledge to accommodate changes to the company’s regulatory environment and needs

As an ideal candidate, you will have an industry certification such as CISSP/CISM/CRISC. You will also have expert knowledge of information security risk (application & cloud infrastructure assurance) and strong knowledge of business continuity. You will also have a proven track record of delivery in a similar role. Experience within telecoms is highly advantageous. 

Similar jobs
Cloud Security Engineer - 6 Month Contract
  • Location Remote (London)
  • Salary c.£700 per day
  • Job type Contract/Temp
  • Sector Cyber Security, Information Security , Interim
  • Description Security Engineer – 6 Month Contract – London   A leading financial services firm, based in London, is looking for a technical Security Engineer to support development of security solutions
Cyber Defence Analyst
  • Location Leeds
  • Salary £45,000-55,000+Bens
  • Job type Permanent
  • Sector Cyber Security, Information Security
  • Description My client, a household name, is seeking a cyber-defence analyst to join it's growing security operations team.
Cyber Threat Engineer
  • Location London
  • Salary £60,000-70,000+Bens
  • Job type Permanent
  • Sector Cyber Security, Information Security
  • Description My client, a multinational organisation, is seeking a hands on cyber threat engineer to assist with the management of security tooling across this growing function.
Related news