Head of Information Security

This is a great senior role within security reporting into the Director and leading on all things related to governance, risk and compliance across the business for a high profile company based in Reading with hybrid working.

Benefits on offer include flexi allowance, car allowance, 28 days holiday and generous bonus scheme.

What the role will be doing:

• Managing the Information Security Risks and Audit findings across the business to include managing the Risk & Audit process flow from identification to application to the Risk Register and finally the closure of the Audit point or the reduction of the Risk.
• Maintaining all Policies, regarding IT Governance and Compliance to the ISO27000 alignment, are both current and applicable to the technology 'stack' along with the entire organisation.
• Accountable for the development of plans for review of management systems, including the review of implementation and use of standards and the effectiveness of operational and process controls.
• Engaging with Senior Members of the technical team for reviewing and documenting all the risks under their function, from identification to mitigation to either the end of the risk or acceptance/lowering the risk.
• Assisting in the building of a Technology Risk culture, developing the skills within the various departments to make risk second nature.

What experience is needed:

• Extensive experience working in a Senior Position and expert level knowledge in PCI DSS, ISO27001, IT Security Risk Management tools.
• One of: CISSP CISM CISA

Project People is acting as an Employment Agency in relation to this vacancy.