2 of 2 Information Security Management Jobs in Surrey

The Information Security Director develops, shapes, and maintains Sycurio's information security capability, driving the attainment and maintenance of the ISO27001, PCI-DSS, and SOC2 compliance. They are the subject matter expert on all things regarding security and compliance, owning the information risk management processes. They are the thought leader on all matters … within the security and compliance domain such that the company remains secure against the ever-changing security threat and compliance landscape. Information Security Strategy Create and maintain the Company's strategy, ensuring alignment to the Company's strategy and business goals. Work across internal and external stakeholders, communicating the information security strategy to relevant … parties and providing assurance of policies, procedures, and systems. Develop, maintain, and expand the information security management system ('ISMS') to optimise compliance for ISO27001, PCI-DSS, and SOC2. Identify gaps in the information security capability, both technical and operational, and propose remediation and mitigation plans and solutions. Responsible for the Company's information security More ❯

consistency, uphold best practices, and drive compliance efforts that align with industry standards and regulatory expectations. How Youll Spend Your Time Assistingwith the compliance program and integrated quality/information security management system to maintain alignment with industry standards Facilitatingand conducting risk assessments in order to ensure risks are effectively identified and managed according to the company … compliance frameworks and industry standards such as ISO, SOC, HIPAA, and GDPR Ability to commuteto our UK office up to [insert number] days a week Sincere interestin privacy, risk management, and maintaining ethical operations across a global organization A knack for working collaborativelywithin cross-functional and international teams What you will gain: This is an excellent opportunity for you … Competencies You Will Need: Must have excellent oral and written communication skills and expertise in: UK & EU privacy legislation completing risk assessments in general, privacy assessments in particular risk management managing and completing subject access requests project management It would be desirable if you have: A deep understanding of the regulatory environment in the US, CAN, DE, SWE More ❯