Job Title

Information Security Officer - Risk. - Hybrid - Lancashire61,500 10.5% bonus 14% pension healthcare plus additional benefits.Hit Apply below to send your application for consideration Ensure that your CV is up to date, and that you have read the job specs first.Information Security Officer with Risk management and risk register experience needed as part of an extremely well-funded growing cyber security team for this North West based enterprise level critical national infrastructure organisation.As the Information Security Officer for Risk your primary purpose will be to become a trusted cyber security risk advisor, ensuring the business is compliant against security policy, acting as advisory, collaborating with stakeholders and management to assess risks, review and advise ratings for IT/OT/ Physical Cyber risks and support business coordinators in assessing their risk position.As the Information Security Officer for Risk, you will build strong relationships with business and technology functions as well as 3rd parties offering real world experience of cyber security risk managementIn this role you will act in an advisory capacity to the business day-to-day basis monitoring cyber security risk, compliance across diverse business functions, supporting business area coordinators. Reviewing risks to ensure they are clear, understandable, developing metrics for tracking at risk board.To be successful in this role you will ideally have as much of the following as possible:A minimum of three years working in an information security officer role. Risk management & Risk Register experience Worked in or with Technology teams.Awareness of information security related law and regulations such as GDPR and NIS Regulations.Worked with or awareness of cyber security frameworks and standards. I.e. NCSC CAF, NIST, ISO 2700x series, CIS.Certifications such as CRISK/CISM/COMPTIA Security+ etcExperience of using a centralised application risk management platform, and business applicationsExperience of assessing vulnerability management platform data, and interpreting attack scenariosExperience of interpreting policies, procedures, standards, and guidelinesFor this role you will need to display the capability to become policy subject matter expert on cyber security risks, and provide advice and guidance across the organisation in support of security compliance against risk policies.This advert is a snapshot of the role for more on the company and a qualified job specification along with a confidential conversation about your career - Apply now