We are recruiting for an experienced Security Specialist to join our IT & Change department. The successful candidate will be responsible for:
To work with the IT Security Manager in delivering an effective IT Security framework for the organisation to minimise the Cyber Security threat to OneFamily
To provide advice and support to business operations and corporate and operational projects to maintain OF security within the stated Risk appetite
Provide 1st, 2nd and 3rd line support as appropriate to skills and knowledge.
To help establish, implement and maintain an Information Security Management System (ISMS), in line with ISO27001.
Ensure that IT Security Risks & issues are documented on the IT&C risk register & control testing is undertaken as required
Ensure all internal IT Security documentation is kept up to date including Policies, procedures & standards and meet existing and newly developed policy and regulatory requirements
Support the business in achieving compliance with IT Security Policies and Standards and any contractual Security requirements.
Supporting colleagues own Team and Deptertment to meet overall departmental objectives
Develop and maintain credible relationships with key stakeholders (IT & the Business) including relevant third parties and suppliers.
Triage & management (including resolution) of security events, prioritising & escalating as required through to resolution
Keep up to date with security trends, threats and control measures.
Develop & maintain regular management information & IT security metrics for regular reporting
Conduct IT security control reviews & attestations for a full range of control types and techniques, across OneFamily IT infrastructure, systems & applications and recommend appropriate action to eliminate or reduce the security risk
Skills, Knowledge & Experience:
Work with little supervision, escalating conflicting priorities and inconsistencies in line with defined practices.
Experience of working in an IT Security role
Mature, calm and forward thinking approach.
Proven drive and commitment.
Ability to work under pressure, interacting with senior management on escalated issues.
Ability to provide (or propose) solutions or mitigations to risks & issues
Excellent communication skills to be able to communicate effectively to all levels of management & staff with varying technical knowledge both orally and with written communications.
Can conduct own analysis of relevant information in situations that are not always governed by set procedures and frameworks, and uses judgement & technical knowledge to make decisions on this analysis