Share this Job

Information Security Officer - CISO Office

Apply now »

Date: 10-Jan-2022

Location: Leamington Spa, GB, CV31 3RZ

Company: Lloyds Register

About Nettitude


Founded in 2003, Nettitude is an award-winning global provider of cybersecurity services, bringing innovative thought leadership to the ever-evolving cybersecurity marketplace. Through our research and innovation centres, we provide threat led services that span technical assurance, consulting and managed detection and response offerings.


To learn more, please visit https://www.nettitude.com/



The role


An Information Security Officer (ISO) is required to support LRQA and Nettitude establish and maintain the organisation's Information Security capability. Working closely with the Global CISO the role will support the creation, development and implementation of the Information Security strategy and operations.

The Information Security Officer will play a crucial role in servicing client requirements relating to information security (including Military, Defence and Critical National Infrastructure) whilst working with stakeholders and asset owners to assess information security risks. The ISO will work proactively to reduce incidents and champion adherence to agreed processes, policies, and procedures.

To conclude, the ISO is expected to keep up to date with the latest cyber security developments, technologies, news, market trends, and use this information to support the continual improvement in information security across LRQA and Nettitude Group. The ISO is expected to be highly autonomous, technology astute and possess the ability to shape their own learning based on industry trends to aide LRQA and Nettitude to deliver secure solutions to their clients.





This role is remote. We can support working from across the UK. All applicants will require residence in the UK.



What you’ll be doing in your role:


  • Maintain an awareness and understanding of the global threat landscape.
  • Managing, maintaining and continually improving each organisation's information security management systems and recommendations for improvement.
  • Development and championing all Information Security Policies, Procedures and relevant standards, and produce supporting documentation and training material.
  • Orchestrating regular Information and Cyber Security assurance tests, audits and risk assessments, and working with stakeholder to report and rectify findings.
  • Monitoring the vulnerability and threat landscape and continually assessing risks to both organisations.
  • Proactively identify information security deficiencies or opportunities for improvement and facilitating development of pragmatic solutions
  • Working with the DPO to ensure appropriate security is applied to data and provide reports / subject access requests
  • Providing an escalation path for information security issues, incidents and enquiries
  • Managing relationships with 3rd party Information Security Service Providers
  • Managing the security training, induction and awareness program for staff and volunteers across the organisation
  • Providing advisory and consulting support to help the organisation improve its security posture and adhere to security policies, expected controls & regulatory requirements



Key Skills:


The following are the requirements for this role:


  • In-depth knowledge of ISO27001 and managing an ISMS
  • Knowledge of Azure vulnerability management
  • Knowledge of Azure Identity and Access management
  • Strong technical experience across Endpoint, Firewalls, SIEM tools, vulnerability scanners, network devices and IAM systems
  • A recognized IS qualification (e.g. CISA, CISM, CISSP, ISO 27001 Lead Auditor)
  • Strong written and speaking English skills.
  • Strong communication and diplomacy skills.
  • Experience conducting threat modelling.
  • Good understanding of cyber security principles.
  • Demonstrable interest in IT security.



What we offer:


We offer you an exciting working environment with intellectual challenges, responsibility and high level client interaction. An attractive remuneration package will be provided.





Are you interested in this job? Apply now via the ‘apply’ button and upload your C.V. and cover letter

Job Segment: Information Security, Consulting, Technology, Research