This is a fully remote position, open to applicants in United Kingdom.

📋 Description

• Enhance and fortify the organisation’s ISO 27001:2022 Information Security Management System within a global business environment.

• Propel governance, risk management, compliance, and security best practices while influencing strategic objectives.

• Engage with stakeholders across Technology, Risk, HR, Compliance, and Operations.

• Oversee policy formulation, internal audits, risk assessments, incident preparedness, and supplier assurance activities.

• Assist with significant business initiatives, including global expansion and transformational projects.

⛳️ Requirements

• A robust background in information security with experience in assessing, advising, and auditing the implementation of security control solutions to align with global security standards;

• Possession of relevant InfoSec certifications (ISO 27001:2022 Lead Auditor / Practitioner, CISM, CISSP, CRISC, etc.);

• Solid understanding of the Data Protection Act and the execution of EU GDPR;

• Familiarity with the principles of ISO 27005 risk assessments and risk treatment, encompassing operational risk as well as compliance monitoring and reporting;

• Knowledge of relevant Information Security Control Frameworks such as ISO 27k and CIS.

🏝️ Benefits

• Flexible Working: Embrace the freedom to work from anywhere in the world for up to 30 days a year.

• Commitment to Diversity and Inclusion: We celebrate our diverse culture and value individuals irrespective of background, disability, religion, gender identity, sexuality, or ethnicity.