and Compliance (GRC): Develop and implement information security policies, procedures, and standards aligned with industry best practices. Ensure compliance with relevant regulations, including ISO27001, ISO 9001 and GDPR. Engaging with key company stakeholders, assessing and actively managing risk through effective … mitigation strategies. 5. ISO27001 & ISO 9001 Compliance: LeadISO27001 & ISO 9001 compliance activities. Maintain our integrated management systems for information security and quality management. Monitor and audit … controls to ensure ongoing compliance. Qualifications Proven experience in information security management. Strong knowledge of information security frameworks and regulations such as, ISO27001, NIST 800 series, NERC-CIP, NIS and GDPR requirements. Knowledge and experience of quality management systems, especially in an ISOmore »
Birmingham, West Midlands, United Kingdom Hybrid / WFH Options
Hays
level or equivalent, with a minimum of 3-5 years of professional experience in a security-based role. Applications from individuals who have ISO27001Lead Implementer /Auditor experience as well as any security accreditation such as … CISSP, CISA, CISM would be highly advised to apply. You will need a strong understanding of ISO27001, Cyber Essentials and PCI / DSS accreditation requirements alongside knowledge and experience of working within a NIST framework. This role will require someone with excellent knowledge more »
record of delivering secure, compliant and robust systems and procedures. Prior experience using Azure and Microsoft cloud products and a CISSP, CISA, CISM, ISO27001leadauditor/ implementor or similar accreditation would be highly advantageous to your more »
development opportunities, allowing you to reach your full potential. What will you be doing? The Senior Security Compliance Officer will work closely with ISO/IEC 27001. Build strong stakeholder relationships to assist with any cybersecurity or compliance risks. Bring your understanding of security frameworks, best … process, providing any necessary documentation and addressing any findings promptly. Ensure the organisation's information security management system aligns with the requirements of ISO 27001. Conduct regular risk assessments to identify potential threats. Stay up to date with emerging cybersecurity threats, regulatory changes and industry best practices. … cloud computing and other green IT solutions to reduce our carbon footprint. What are we looking for? ISO/IEC27001LeadAuditor and / or Lead Implementer. Experience in implementing ISMS' and quality more »