Information Security Assurance and Compliance Professional
2 weeks ago
Job Title: Information Security Assurance and Compliance Specialist
Company: Change Digital - Digital & Tech Recruitment
Job Type: Permanent
Location: Hybrid working - 2 days a week in the office
Salary: Up to £65K plus benefits
About the Role:
We are seeking an experienced Information Security Assurance and Compliance Specialist to join our team. The successful candidate will be responsible for supporting the team's mission by focusing on internal and client-related security governance, compliance, audit, due diligence, and management of risk.
Key Responsibilities:
- Review and Analysis: Review proposed client engagement contracts, SLAs, and complete client due diligence questionnaires, audit requests, and competitive bids, working to client-oriented deadlines.
- Repository Management: Maintain a repository of standard information security responses and design effectiveness evidence for external audit, client assessments, client RFPs, etc.
- Certification and Compliance: Maintain and uphold the firm's certifications and Information Security Management System in line with the standard, facilitate such internal and external audit exercises, and ensure timely remediation for any identified non-conformance as is necessary to keep compliance with the ISO27001 certification.
- Assessment and Recommendation: Assess and recommend information security, governance, risk management, and compliance services and working practices that reflect emerging client expectations and best meet, develop, and improve the firm's current and future information security environment.
- Control Assurance: Carry out periodic assurance of controls to ascertain design effectiveness and maturity.
- Team Support: Assist members of the team to carry out other workloads relating to the operation of the Information Security department during periods of higher demand or where additional resources are required.
- Process Improvement: Facilitate continual improvement by investigating and utilizing the latest technologies, such as Artificial Intelligence/Machine Learning, and other process methodologies to help transform the delivery of services with a focus on greater efficiency and accuracy.
- Client Implications: Identify emerging client implications and requirements for consideration into the firm's information security frameworks, strategy, roadmap, policies, and into IT initiatives roadmap.
- Industry Trends: Stay abreast of technical, industry, regulatory, and company changes and/or trends as they relate to cyber security, the legal industry, information management, InfoSec, technological standards/trends, and IT efficiencies.
- Metrics and Reporting: Facilitate/establish and report on monthly metrics and Key Performance/Risk Indicators relating to client due diligence work.
- Education and Insight: Provide education and insight to members of IT and other relevant areas, relating to the requirements and expectations of clients.
- Relationship Building: Build and maintain relationships with the team and relevant members of the Risk and Client Operations departments, share best practice, and ensure that due diligence activities are coordinated and executed efficiently.
Essential Skills and Experience:
- Information Security Experience: Proven experience of working in an Information Security and IT Risk Management role within a fast-paced environment. Experience within the legal industry is ideal, but not essential.
- Operational Knowledge: Operational knowledge of one or more international information security standards, risk management, and control frameworks/practices, e.g., ISF SOGP, ISO27001/2, ISO31000, IRAM2, NIST, and cybersecurity framework. COBIT, CPS-234, etc.
- Organizational Skills: Strong organizational skills and the ability to handle multiple conflicting priorities.
- Time Management: Able to work to very tight deadlines under pressure and to assimilate information quickly.
- Interpersonal Skills: Strong interpersonal skills, including confidence, positivity, diplomacy, the ability to influence and persuade, maintain an open viewpoint, and to gain credibility quickly across the Firm and with clients.
- Communication Skills: Excellent verbal and written communication skills, with the ability to simplify technical points where required, and to present effectively to senior stakeholders and managers.
- Attention to Detail: Demonstrates attention to detail with a high level of accuracy.
- Initiative and Motivation: Positive and tenacious with the ability to proactively drive initiatives forward and motivate resources within and outside their team.
-
Glasgow, Glasgow City, United Kingdom Clyde & Co Full timeJob SummaryClyde & Co is seeking a highly skilled Information Security Assurance and Compliance Specialist to join our team. As a key member of our Information Security department, you will play a critical role in ensuring the firm's information security frameworks, strategy, and policies are aligned with emerging client expectations and industry best...
-
Glasgow, Glasgow City, United Kingdom Clyde & Co Full timeJob SummaryClyde & Co is seeking a highly skilled Information Security Assurance and Compliance Specialist to join our team. As a key member of our Information Security department, you will play a critical role in ensuring the firm's information security frameworks, strategy, and policies are aligned with emerging client expectations and industry best...
-
Glasgow, Glasgow City, United Kingdom Change Digital – Digital & Tech Recruitment Full timeJob Title: Information Security Assurance and Compliance SpecialistJoin Change Digital – Digital & Tech Recruitment in our Glasgow office and take on a challenging role as an Information Security Assurance and Compliance Specialist. This is a permanent position with a leading global law firm in the UK, offering a salary of up to £65K plus benefits and a...
-
Glasgow, Glasgow City, United Kingdom Change Digital – Digital & Tech Recruitment Full timeJob Title: Information Security Assurance and Compliance SpecialistJoin Change Digital – Digital & Tech Recruitment in Glasgow and take on a challenging role as an Information Security Assurance and Compliance Specialist. This is a permanent position with a leading global law firm in the UK, offering a salary of up to £65K plus benefits and hybrid working...
-
Glasgow, Glasgow City, United Kingdom Change Digital – Digital & Tech Recruitment Full timeJob Title: Information Security Assurance and Compliance SpecialistJoin Change Digital – Digital & Tech Recruitment in our Glasgow office and take on a challenging role as an Information Security Assurance and Compliance Specialist. This is a permanent position with a leading global law firm in the UK, offering a salary of up to £65K plus benefits and a...
-
Glasgow, Glasgow City, United Kingdom Change Digital – Digital & Tech Recruitment Full timeJob Title: Information Security Assurance and Compliance SpecialistJoin Change Digital – Digital & Tech Recruitment in Glasgow and take on a challenging role as an Information Security Assurance and Compliance Specialist. This is a permanent position with a leading global law firm in the UK, offering a salary of up to £65K plus benefits and hybrid working...
-
Glasgow, Glasgow City, United Kingdom McGregor Boyall Full timeJob Title: Information Security Assurance and Compliance SpecialistMcGregor Boyall is seeking an experienced Information Security Assurance and Compliance Specialist to join our team. As a key member of our Information Security and Risk team, you will play a critical role in establishing a risk-managed environment that enables the company to protect the...
-
Glasgow, Glasgow City, United Kingdom McGregor Boyall Full timeJob Title: Information Security Assurance and Compliance SpecialistMcGregor Boyall is seeking an experienced Information Security Assurance and Compliance Specialist to join our team. As a key member of our Information Security and Risk team, you will play a critical role in establishing a risk-managed environment that enables the company to protect the...
-
Glasgow, Glasgow City, United Kingdom McGregor Boyall Full time{"title": "Information Security Assurance and Compliance Specialist", "description": "Job SummaryMcGregor Boyall is seeking an experienced Information Security Assurance and Compliance Specialist to join our team. The successful candidate will be responsible for ensuring the confidentiality, integrity, and availability of information used by the business and...
-
Glasgow, Glasgow City, United Kingdom McGregor Boyall Full time{"title": "Information Security Assurance and Compliance Specialist", "description": "Job SummaryMcGregor Boyall is seeking an experienced Information Security Assurance and Compliance Specialist to join our team. The successful candidate will be responsible for ensuring the confidentiality, integrity, and availability of information used by the business and...
-
Glasgow, Glasgow City, United Kingdom Change Digital - Digital & Tech Recruitment Full timeJob Title: Information Security Assurance and Compliance SpecialistWe are seeking a highly skilled Information Security Assurance and Compliance Specialist to join our team at Change Digital - Digital & Tech Recruitment. As a key member of our organization, you will play a critical role in ensuring the security and compliance of our clients' information.Key...
-
Glasgow, Glasgow City, United Kingdom Change Digital - Digital & Tech Recruitment Full timeJob Title: Information Security Assurance and Compliance SpecialistWe are seeking a highly skilled Information Security Assurance and Compliance Specialist to join our team at Change Digital - Digital & Tech Recruitment. As a key member of our organization, you will play a critical role in ensuring the security and compliance of our clients' information.Key...
-
Glasgow, Glasgow City, United Kingdom Clyde & Co Full timeJob Title: Information Security Assurance and Compliance SpecialistClyde & Co is seeking a highly skilled Information Security Assurance and Compliance Specialist to join our team. As a key member of our Information Security department, you will be responsible for ensuring the firm's information security management system is compliant with industry standards...
-
Glasgow, Glasgow City, United Kingdom Clyde & Co Full timeJob Title: Information Security Assurance and Compliance SpecialistClyde & Co is seeking a highly skilled Information Security Assurance and Compliance Specialist to join our team. As a key member of our Information Security department, you will be responsible for ensuring the firm's information security management system is compliant with industry standards...
-
Glasgow, Glasgow City, United Kingdom Change Digital – Digital & Tech Recruitment Full timeJob Title: Information Security Assurance and Compliance SpecialistThis is an exciting opportunity to join our team as an Information Security Assurance and Compliance Specialist. As a key member of our Information Security department, you will play a crucial role in ensuring the firm's information security management system (ISMS) is maintained and...
-
Glasgow, Glasgow City, United Kingdom Change Digital – Digital & Tech Recruitment Full timeJob Title: Information Security Assurance and Compliance SpecialistThis is an exciting opportunity to join our team as an Information Security Assurance and Compliance Specialist. As a key member of our Information Security department, you will play a crucial role in ensuring the firm's information security management system (ISMS) is maintained and...
-
Glasgow, Glasgow City, United Kingdom Change Digital - Digital & Tech Recruitment Full timeJob Title: Information Security Assurance and Compliance SpecialistJoin Change Digital, a leading digital and tech recruitment agency, in our search for an experienced Information Security Assurance and Compliance Specialist. This is an exciting opportunity to work with a global law firm in the UK, supporting their mission by focusing on internal and...
-
Glasgow, Glasgow City, United Kingdom Change Digital - Digital & Tech Recruitment Full timeJob Title: Information Security Assurance and Compliance SpecialistJoin Change Digital, a leading digital and tech recruitment agency, in our search for an experienced Information Security Assurance and Compliance Specialist. This is an exciting opportunity to work with a global law firm in the UK, supporting their mission by focusing on internal and...
-
Glasgow, Glasgow City, United Kingdom Change Digital – Digital & Tech Recruitment Full timeJob Title: Information Security Assurance and Compliance SpecialistThis is an exciting opportunity to join a leading global law firm in the UK as an Information Security Assurance and Compliance Specialist. The successful candidate will be primarily responsible for supporting the team's mission by focusing on internal and client-related security governance,...
-
Glasgow, Glasgow City, United Kingdom Change Digital – Digital & Tech Recruitment Full timeJob Title: Information Security Assurance and Compliance SpecialistThis is an exciting opportunity to join a leading global law firm in the UK as an Information Security Assurance and Compliance Specialist. The successful candidate will be primarily responsible for supporting the team's mission by focusing on internal and client-related security governance,...
