---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------
JOB DESCRIPTION
---------------------------------------------------
Position: Security Consultant
Location: London, , United Kingdom
Type: Permanent F/T
Closing Date: 2007-04-07
Information Security Officer (ISO) / Consultant
Reference No. SF-200
Company Global Financial Organisation
Location London
Salary £65,000
Package Banking benefits
Start Date ASAP
No. Required 1
The Role
Act as an ambassador for the Information Security &Privacy group to both
internal and external clients, vendors and partners
Assist in ensuring that an effective Information Security Program is in place
across Business Units
Provide consistent interpretation of Information Security Policies and
Standards;
Act as single point of contact for Information Security issues.
Promote awareness and understanding of Information Security & Privacy Policy,
Rules, Programs and Guidelines to all levels across Business Units; (e.g.,
Executives, managers, technical, business and support staff, consultants and
vendors, etc.)
Manage Information Security Risks through Risk Assessments and the Risk
Acceptance Process
Ensure appropriate Information Security requirements and activities are covered
in all development initiatives
Understand and participate in IS&P initiatives
Maintain knowledge of current Information Security topics as they relate to the
Business environment
Ensure that Information Security solutions are consistent with both Information
Security Policy, Standards, Guidance and architectural directions
Report all Information Security incidents/breaches to IS&P, Security Incident
Response Team (SIRT)
Provide guidance to the Business for resolving audit findings and ensuring
closure
Lead the various Business Units in the development of corrective action plans
as a result of self assessments, risk assessments and security testing
Coordinate self assessment to identify Information Security risks and
vulnerabilities
Prepare and submit monthly status and scorecards for Management and the
Information Security Forum
Coordinate with OGC to ensure that business specific Information Security
initiatives are consistent with legal and regulatory requirements
Coordinate security tests of the applications and infrastructure
Recommend new standards to Corporate Programs group
Experience Required:
Essential:
Solid Information Security experience
Broad technical knowledge of application and data security
Extensive experience helping application development communities to implement
secure systems
Conceptual infrastructure understanding (firewalls, protocols, data storage)
Solid understanding of the investment banking industry
Knowledgeable of current security issues
Contributed towards Policy & Guidelines (documentation and delivery)
Performed security reviews (site assessments and technical penetration test)
Secondary: (Not required but advantageous)
CISSP/CISM/CISA
Personal Attributes Required:
Client focused
Strong communicator
Decision maker
Leadership skil
Gravitas/Influencing skills
Knowledge of regulatory impact to business
Problem solver
Firm but flexible
Excellent negotiation skills
JOB REQUIREMENTS
---------------------------------------------------
Candidates must be eligable to work in the UK when applying
CONTACT
---------------------------------------------------
Information Security Solutions
Iain Sutherland
iain@InformationSecuritySolutions.com
---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.
http://www.securityfocus.com/jobs
