Information Security Governance Risk and Compliance

4 weeks ago

West Malling, United Kingdom Commercial Services Group Full time

**Information Security Governance Risk and Compliance Officer **(£35,000pa)

**Commercial Services Group** (Hybrid/Kings Hill, Kent)

**About Commercial Services Group**

Commercial Services Group (CSG) is one of the largest providers of public sector and education procurement services globally, with revenues of c£500M, 1800 staff and six trading divisions: Global Education Supplies, Procurement, Energy & Carbon, Community Services, Professional Services and People Services.

Wholly owned by Kent County Council, CSG supports over 15,000 customers in 86 countries and collaborates with a supply chain of c1,000 suppliers.

**The Role**

We are a highly recognised public sector focused business whose mission is to always deliver a quality and seamless customer service, and protecting our information, users and client data is critical to our success.

The Information Security GRC Officer is responsible for supporting our Group CISO in establishing and maintaining a Group-wide information risk management program to ensure that information assets are adequately protected. This individual will be responsible for identifying, evaluating, and reporting on information security risks in a manner that meets compliance and regulatory requirements, and aligns with and supports the risk posture of CSG Group.

As part of our team, you will be responsible for supporting our Group CISO in identifying Information Security Risks and ensuring appropriate governance structures are in place to manage these risks. Your role will involve ensuring compliance with legislation, regulation, and security certifications (e.g., ISO27001 and Cyber Essentials+)

**Key Duties**
- Developing and driving a comprehensive risk management program that includes ongoing information system risk assessments for both existing and newly integrated systems
- Working with the Group CISO to develop and coordinate Group-wide information security risk assessments, controls, policies, standards, processes, and guidelines.
- Ensuring consistent compliance with legislation, regulations, and certification requirements
- Regularly conducting audits to maintain and enhance security practices to ensure they are compliant and meet the high standards of our organisation
- Reporting risk management issues and internal control deficiencies identified directly to governance groups and supporting the Group CISO in providing recommendations for enhancing our information security and risk management strategies

**What we need from you**
- A genuine passion for Information and Cyber Security, with a keen eye for detail
- A mindset that is strongly orientated towards security risk management and compliance
- Security Certifications (ISO27001, CISM etc.) are desirable but no essential
- Knowledge of Information Security Principles, Standards and Frameworks
- Knowledge of legislative and regulatory requirements pertaining to Information Security and Data Protection
- Experience of ISO27001 is desirable, but not essential
- Proven experience of Information Security Risk Management
- Proven experience of security policy development and process management
- Experience of communicating with senior stakeholders
- Experience of engaging with technical teams
- Excellent IT skills, particularly Microsoft Excel, PowerPoint and other Office packages
- Excellent telephone manner and strong communication skills both oral and written
- Able to build rapport quickly within teams, with peers and stakeholders
- Resilient nature - able to overcome obstacles and barriers and to maintain pace and momentum
- Ability to multitask, prioritise and manage time effectively
- Display integrity - is sincere in own behaviour and in dealings with others - role models values and behaviours and questions the actions of others
- Self-motivated and self-aware - recognises own strengths and weaknesses, is committed to personal development
- Creativity and innovation
- Adaptable work style with the ability to operate with tact and sensitivity where required
- Team player who exhibits, and instils in others, a ‘whatever it takes’ attitude to exceed targets

**In return, CSG will offer you**:

- 25 days holiday, plus bank holidays
- Birthday off work
- Life assurance cover
- Company pension
- Flexible first, hybrid working
- A culture of progression & development
- Shopping discounts & retailer offers
- Team & company events
- eLearning portal
- EAP programme
- Referral scheme
- Health & Wellbeing platform
- Health Cash Plan initiative
- Discounted gym membership

  • Information Security Analyst

    2 weeks ago

    West Malling, United Kingdom Tiger Resourcing Group Full time

    Senior Information Security Analyst Main purpose of job: We are looking for a Senior Information Security Analyst to join the Information Security team to support us with operating and assuring the effectiveness of our security controls; supporting security governance and assurance activities; and providing security input and support to IT change...

  • Cyber Security

    2 weeks ago

    West Bromwich, West Midlands, United Kingdom West Brom Full time €80,000

    Cyber Security Lead (GRC) Salary: up to £80,000 per annum dependent on skills and experience Hours: 35 hours per week Contract: Permanent Location: Hybrid The Role We are seeking a highly skilled and experienced Security Governance, Risk, and Compliance (GRC) Lead to join our dynamic team. As the Security GRC Lead, you will play a critical role in...

  • Information Security Analyst

    2 weeks ago

    West Malling, United Kingdom Tiger Resourcing Group Full time

    Senior Information Security Analyst Main purpose of job:We are looking for a Senior Information Security Analyst to join the Information Security team to support us with operating and assuring the effectiveness of our security controls; supporting security governance and assurance activities; and providing security input and support to IT change...

  • Information Security Analyst

    7 days ago

    West Malling, United Kingdom Tiger Resourcing Group Full time

    Senior Information Security Analyst Main purpose of job:We are looking for a Senior Information Security Analyst to join the Information Security team to support us with operating and assuring the effectiveness of our security controls; supporting security governance and assurance activities; and providing security input and support to IT change...

  • Cyber Security

    2 weeks ago

    West Bromwich, United Kingdom The West Brom Full time

    Job Description Cyber Security Lead (GRC) Salary: up to £80,000 per annum dependent on skills and experience Hours: 35 hours per week Contract: Permanent Location: Hybrid The Role We are seeking a highly skilled and experienced Security Governance, Risk, and Compliance (GRC) Lead to join our dynamic team. As the Security GRC Lead,...

  • Cyber Security

    1 week ago

    Co. West Midlands, United Kingdom West Brom Full time €80,000

    Cyber Security Lead (GRC) Salary: up to £80,000 per annum dependent on skills and experience Hours: 35 hours per week Contract: Permanent Location: Hybrid The Role We are seeking a highly skilled and experienced Security Governance, Risk, and Compliance (GRC) Lead to join our dynamic team. As the Security GRC Lead, you will play a critical role in...

  • Cyber Security

    6 days ago

    Co. West Midlands, United Kingdom West Brom Full time

    Cyber Security Lead (GRC) Salary: up to £80,000 per annum dependent on skills and experience Hours: 35 hours per week Contract: Permanent Location: Hybrid The Role We are seeking a highly skilled and experienced Security Governance, Risk, and Compliance (GRC) Lead to join our dynamic team. As the Security GRC Lead, you will play a critical...

  • Cyber Security

    1 week ago

    Co. West Midlands, United Kingdom West Brom Full time €80,000

    Cyber Security Lead (GRC) Salary: up to £80,000 per annum dependent on skills and experience Hours: 35 hours per week Contract: Permanent Location: Hybrid The Role We are seeking a highly skilled and experienced Security Governance, Risk, and Compliance (GRC) Lead to join our dynamic team. As the Security GRC Lead, you will play a critical role in...

  • Cyber Security

    7 days ago

    Co. West Midlands, United Kingdom West Brom Full time €80,000

    Cyber Security Lead (GRC) Salary: up to £80,000 per annum dependent on skills and experience Hours: 35 hours per week Contract: Permanent Location: Hybrid The Role We are seeking a highly skilled and experienced Security Governance, Risk, and Compliance (GRC) Lead to join our dynamic team. As the Security GRC Lead, you will play a critical role in...

  • Cyber Security

    7 days ago

    Co. West Midlands, United Kingdom West Brom Full time €80,000

    Cyber Security Lead (GRC) Salary: up to £80,000 per annum dependent on skills and experience Hours: 35 hours per week Contract: Permanent Location: Hybrid The Role We are seeking a highly skilled and experienced Security Governance, Risk, and Compliance (GRC) Lead to join our dynamic team. As the Security GRC Lead, you will play a critical role in...

  • Senior Information Security Risk

    2 weeks ago

    leeds, west yorkshire, United Kingdom Fruition IT Full time

    Role: Senior Security Risk & Compliance AnalystLocation: Hybrid based out of London, Leeds or Birmingham - once every 2 weeks on sitePackage: £67,000 + bonus + 28 days annual leave An international leader in business services is looking for a Security Risk & Compliance Analyst to lead across initiatives relating to security and risk. The Information...

  • Information Security

    1 month ago

    Co. West Midlands, United Kingdom Xpertise Recruitment Full time

    Head of Information Security - Midlands (Hybrid) - £100k + Car Allowance + Bonus Information Security | Strategy | Governance | Stakeholder Management | Risk | ISO27001 Salary: £100k + Car Allowance + Bonus Midlands (Hybrid) Are you an Information Security leader looking for the next challenge in your career? Have you previously been responsible for...

  • Information Security

    3 weeks ago

    Co. West Midlands, United Kingdom Xpertise Recruitment Full time €100,000

    Head of Information Security - Midlands (Hybrid) - £100k + Car Allowance + Bonus Information Security | Strategy | Governance | Stakeholder Management | Risk | ISO27001 Salary: £100k + Car Allowance + Bonus Midlands (Hybrid) Are you an Information Security leader looking for the next challenge in your career? Have you previously been responsible for...

  • Information Security

    7 days ago

    Co. West Midlands, United Kingdom Xpertise Recruitment Full time €100,000

    Head of Information Security - Midlands (Hybrid) - £100k + Car Allowance + Bonus Information Security | Strategy | Governance | Stakeholder Management | Risk | ISO27001 Salary: £100k + Car Allowance + Bonus Midlands (Hybrid) Are you an Information Security leader looking for the next challenge in your career? Have you previously been responsible for...

  • Information Security

    1 week ago

    Co. West Midlands, United Kingdom Xpertise Recruitment Full time €100,000

    Head of Information Security - Midlands (Hybrid) - £100k + Car Allowance + Bonus Information Security | Strategy | Governance | Stakeholder Management | Risk | ISO27001 Salary: £100k + Car Allowance + Bonus Midlands (Hybrid) Are you an Information Security leader looking for the next challenge in your career? Have you previously been responsible for...

  • Cyber Security Governance and Risk Management Consultant

    2 months ago

    West Yorkshire, United Kingdom Defence Full time

    What Will You Be Doing?Your role will be at the core of everything that our client does - from supporting their customers with high quality cyber security consultancy and cyber assurance.As part of the growth of their existing successful cyber security risk and compliance team, new and exciting roles are available for cyber security specialists. You...

  • Cyber Security Engineer

    2 days ago

    West Malling, United Kingdom Clearwater People Solutions Ltd Full time

    We are seeking a Cyber Security Engineer to join our clients Information Security team. In this role, you will support the operation and assurance of our security controls, contribute to security governance and assurance activities, and provide security input for IT change initiatives. You will offer technical security expertise to assist the...

  • Information Security Officer

    5 days ago

    West Sussex, United Kingdom HOLT EXECUTIVE Full time

    South East, West Sussex, UK - £45000 - £55000 per annum, Benefits: 24.75 hrs per week over 3 days - Permanent - V-32470 Holt Executive are partnered with an innovative and leading design and manufacturing business that specialises in electro-optics and supplies to a variety of markets across the globe. Our partner has an exciting opportunity for an...

  • Cyber Security Engineer

    2 days ago

    West Malling, United Kingdom Clearwater People Solutions Ltd Full time

    We are seeking a Cyber Security Engineer to join our clients Information Security team. In this role, you will support the operation and assurance of our security controls, contribute to security governance and assurance activities, and provide security input for IT change initiatives. You will offer technical security expertise to assist the Information...

  • Information Security Officer

    1 month ago

    West Yorkshire, United Kingdom Erin Associates Full time

    **Information Security Officer - Hybrid / Yorkshire or Midlands** **Circa £40,000 + Benefits such as 35-hour work week, flexible hours, 25 days Holidays + Bank holidays, Life assurance and more** Some of the responsibilities of the Information Security Officer will include but not be limited to: - Developing the company’s Information Security Consultancy...