Current jobs related to Information Risk Specialist - London - Information Security Solutions

  • Risk & Compliance Associate

    1 week ago

    London, Greater London, United Kingdom Specialist risk Group Full time

    Reports to: Compliance Business Partner and Manager (Data Privacy and Financial Crime)Who We AreSRG is an integrated group of insurance intermediaries arranging specialist insurance for corporates operating in the UK and internationally. The group serves over 18,000 end policyholders across multiple lines of business and specializes in creating solutions to...

  • Risk & Compliance Associate

    1 week ago

    London, Greater London, United Kingdom Specialist risk Group Full time

    Reports to: Compliance Business Partner and Manager (Data Privacy and Financial Crime)Who We AreSRG is an integrated group of insurance intermediaries arranging specialist insurance for corporates operating in the UK and internationally. The group serves over 18,000 end policyholders across multiple lines of business and specializes in creating solutions to...

  • Risk IT Technical Specialist

    2 days ago

    London, United Kingdom Hays Specialist Recruitment Limited Full time

    Risk IT Technical Specialist Up to £700 per day (Inside IR35) Fully remote 12 month contract Are you or someone you know looking for a new role as an IT Risk Technical Specialist? I am reaching out as I'm exclusively working on a new 12 month contract role, working for a leading insurance company. - Working in IT, Information Security and Cyber Security -...

  • Risk Information

    2 weeks ago

    London, United Kingdom eFinancialCareers Full time

    **What the Hiring Manager Says** An exciting opportunity to join the Quilter Central Risk Team, supporting a wide variety of risk reporting, systems, and oversight activities. The role holder will have the opportunity to develop skills in broader areas including the oversight of ESG andclimate-related risk and emerging risks analysis and...

  • Senior Information Risk Specialist

    2 weeks ago

    London, Greater London, United Kingdom Skipton Building Society Full time

    Hours: 35 Hours per weekHybrid workingSalary: Up to £55,000 depending on experienceClosing Date: Sun, 13 Apr 2025A fantastic new opportunity has arisen within the Group Enterprise & Operational Risk Team for a Senior Information Risk Specialist. This is an exciting time to join the team and work closely with the rest of the business and wider Group to...

  • Information Security and Assurance Advisor

    3 days ago

    London, Greater London, United Kingdom Concept Information Technology Full time

    Information Security and Assurance AdvisorJob Category: Information TechnologyLocation:Warwickshire, United KingdomEU work permit required:YesJob Description:We are seeking an experienced Information Security and Assurance Advisor to provide expert guidance and specialist advice on all aspects of information assurance, security, and risk management.The role...

  • Reporter - Trading Risk

    6 days ago

    London, United Kingdom Trading Risk Full time

    We are looking for an emerging reporter to join our team in a role that offers the chance to build international contact networks and work on industry scoops. Based in London, the journalist will report to the managing editor of _Trading Risk_._ Our title covers the insurance-linked securities (ILS) and reinsurance industry, at the intersection of the hedge...

  • IT Risk

    3 days ago

    London, Greater London, United Kingdom Audit & Risk Recruitment Full time

    IT Risk and Governance ManagerThe Audit & Risk Recruitment company is working with a large Manufacturing and Logistics company to help them source an IT Risk and Governance Manager.The IT Risk & Governance Manager, who reports to the Head of Risk, is responsible for overseeing the identification, assessment, and mitigation of IT-related risks within the...

  • IT Risk

    3 days ago

    London, Greater London, United Kingdom Audit & Risk Recruitment Full time

    Direct message the job poster from Audit & Risk RecruitmentWe are delighted to announce that Audit & Risk Recruitment have been exclusively mandated by a FTSE 250 business to help build an Audit, Risk and Compliance function for a leading FMCG brand in Scotland.The IT Risk & Controls Manager, who reports into the Head of Risk, is responsible for overseeing...

  • Information Security and Assurance Advisor

    2 weeks ago

    London, Greater London, United Kingdom Concept Information Technology Full time

    Social network you want to login/join with:Information Security and Assurance Advisor, Warwickshirecol-narrow-leftLocation:Warwickshire, United KingdomJob Category:Information TechnologyEU work permit required:Yescol-narrow-rightJob Reference:BBBH75954_1745571910Job Views:6Posted:25.04.2025Expiry Date:09.06.2025col-wideJob Description:Information Security...

Information Risk Specialist

3 weeks ago

London, United Kingdom Information Security Solutions Full time

Company: Financial Services

Location: Hybrid - City of London

Reports to Information Risk Manager

**Salary**: £80,000

Benefits: Generous

No. Required: 1

Start Date: ASAP

**The Role**

As the Information Security Risk Specialist, you shall support the Information Risk Manager which has responsibility for all Governance Risk and Compliance activities in the designing of appropriate policies and organisational controls. You will ensure that the control environment supports the mission of enterprise software vendor, operator of the Corda Network and Managed Services provider.

You'll be used to working in environments with mature security controls, but have the insight to bring a risk-based approach to a fast-moving company with a start-up culture. This is an opportunity to help "write the book" on building security assurance and good security practices for enterprise blockchain.

**Responsibilities**- Support the Information Risk Manager in the delivery of security governance, risk and compliance activities globally.-
- Drive the different types of security risk assessments across different business lines and manage risks via the risk register.-
- Ensure assurance activities are appropriately implemented across different business lines, and as required, you will be required to test the effectiveness of those controls.-
- Conduct security assessments and due diligence activities of critical 3rd party suppliers/vendors. This shall include liaising with key stakeholders such as IT, Legal and Business Resources.-
- Support customer due diligence activities, contract reviews and customer security review activities as necessary.-
- Support the Information Risk Manager and the wider Security team in the development, operation and maintenance of the security control environment (ISMS) including information security policies, standards and guidelines.-
- Identify emerging security requirements from our clients and ensure that capabilities to meet those are baked-in to our products and services.-
- Have a firm understanding of implementing mature security controls/practices across the organisation and engaging with stakeholders across the business.**Qualifications**- You'll have 3/5 years of experience in a direct information security role specialising in governance, risk and compliance activities.-
- We believe that we work better as a team, and hope you share that belief. You'll be working in a diverse group of people with a variety of skills and backgrounds, a high level of emotional intelligence will be assumed.-
- You'll need excellent communication skills, both verbal and written. You should be confident in explaining security terms and principles to an audience who may not be familiar with the underlying concepts.-
- You will assist in defining the ISMS and controls assurance environment creating the appropriate documentation/evidence to support external assessments.-
- Working knowledge of ISO 27000 or NIST Cyber Security Framework would be great, but experience with other recognised standards will be acceptable.-
- You should have worked in an organisation certified to ISO 27001 or gained SOC2 certification. You will have been part of this journey and understand the controls needed to achieve different certifications.-
- A firm understanding of the security practices which should be adopted for different legal and regulatory requirements such as PCI-DSS, GDPR, or different regulatory bodies.-
- Have responsibility for conducting security assurance/assessment activities and able to demonstrate process improvements to enhance the maturity of security controls.-
- You will have a solid appreciation of the variety of technical controls including endpoint security, identity and access management, network security controls (firewalls, VPN), intrusion detection and security event management/log analysis tools.-
- You won't be expected to be hands-on with these tools, but you'll certainly need to be aware of how they fit within the control environment which you will help to design and operate.An MSc in Information Security or a CISSP, CISM, CISA. Appropriate career experience is just as important though. Be prepared to tell us all about that experience.