Join to apply for the Information Security Officer role at SBS

Company Description

Job Description

Bristol or Sheffield – hybrid – 2 office days per week.

Salary: £55,000-£60,000 (DOE) per annum plus pension, & excellent benefits package

Job type: Permanent, full time

We are on the lookout for an experienced Cloud Information Security Officer to help drive forward our commitment to providing a world-class information security management system for our products and services that protects both SBS and our customers' interests. This role will report to the Security, Risk and Compliance Lead.

What will the role involve?

• Proactively monitoring, identifying, responding to, and resolving security incidents.
• Aligning information security strategy with business goals and objectives.
• Ensuring compliance with relevant local and international laws and internal policies.
• Fostering a culture of information security awareness and continuous improvement.
• Driving the adoption of best practices in data protection and cybersecurity.
• Maintaining a strong relationship with internal teams and our customers by demonstrating an understanding of and executing best practices within information security.
• Updating and maintaining information security policies and procedures, and supporting operational collateral.
• Managing internal and external audit events (e.g., SOC1, ISO 27001) and customer information security requests to demonstrate compliance with industry best practices and contractual obligations.
• Remaining up-to-date with the latest threats and vulnerabilities to ensure operational tools and processes are in place and up to date.
• Participate in the identification, assessment, registration, and treatment of information security risks

Qualifications

What are we looking for?

• Minimum of 3 years of experience working in an information security role, or an information security-related qualification.
• Experience working in and securing cloud environments (AWS preferred)
• Excellent working knowledge of common security tools and platforms.
• Familiarity with GDPR, ISO 27001 and other relevant information security laws and standards.
• Excellent written and verbal communication skills, with the ability to convey complex information.
• A very strong understanding of information security concepts and best practices.
• Capable of managing emerging information security risks and how these can be mitigated.

Additional Information

What's in it for you?