role will be: Fulfilling the role of IT Security Officer as defined in the Risk Management Accreditation Document Set (RMADS) Maintain and update the ISO27001 accredited Information Security Management System (ISMS) and ensure staff are aware of its content. Liaising with the IT Management Team to develop and manage IT … GRC, with the ability to gain UK Security Clearance. You will also need the following: Ability to be on site close to Salisbury 2 / 3 times a week. 3 years + experience with GRC, most preferably with an ISO background. An ISO:27001 … ll get in return With a salary of up to £55,000, and a generous benefits package which includes access to industry leading training / certifications, good pension, free parking, and you’ll work alongside some highly experienced and talented colleagues to share knowledge (which is actively encouraged). more »
Maintain knowledge of site policies and procedures, especially the quality system Develop and maintain working knowledge of ISO13485 & ISO9001, MDD / MDR, GDP, ISO27001 and LSAS requirements. Support regulatory and customer audits when delegated by the QA / RA Manager / Management representative & RP. Report all issues … Change Controls, Document updates, Risk Assessments. Support the internal audits / self inspection schedule and perform audits against cGDP and standards; ISO9001, ISO13485, ISO27001, ISO22301 & LSAS as the schedule dictates and maintain an inspection ready status. Perform local area and local system audits. Training / coaching of operations … as well as ISO13485 & ISO9001 Ability to work in matrix teams. Experience of working with multiple QMS systems Understanding of the requirements of GDPR & ISO27001 Basic knowledge of the principles of Lean six sigma and its application Relevant Science or Engineering based HNC / NVQ level 3 such as more »
swindon, wiltshire, south west england, United Kingdom Hybrid / WFH Options
WHSmith
in a combination of risk management, information security and IT roles (including Audit) Knowledge gained through working with common information security management frameworks (e.g. ISO27001, Cyber Essentials, NIST, PCI DSS, SOC2) A strong knowledge of Office 365, Teams, and SharePoint Knowledge of data protection regulations and requirements Experience of PCI more »
