Security & Resilience Advisor

A leading security company is seeking a Security & Resilience Advisor to provide support on a 6 month contract. This role can be based in either the Leicestershire or Manchester regions and offers an element of remote working.

You will be responsible for supporting the Head of Security and & Business Continuity focusing on security and resilience aspects and assisting with the management and development of the ISO 27001 certified ISMS. This role does fall inside IR35 and SC Clearance is mandatory.

The Role:

- Assist in the maintenance and development of an Information Security Management System, certified to ISO27001 | of a Business Continuity Management System, aligned to ISO22301.
- Support the implementation and maintenance of an information security | business continuity policy framework (policy, standards and guidelines), reflective of statutory, regulatory and contractual security requirements.
- Operate the policy exemption process and manage variances in accordance with perceived levels of risk.
- Deliver information security audits to assess the status of information security across the company | business continuity testing and exercising.
- Track and maintain compliance reports and actions needed to achieve compliance against policies, applicable regulations and internal / external findings.
- Implement and maintain the information risk management framework including risk assessment methodology and templates.
- Maintain the information risk register consisting of asset, threats and vulnerabilities, including likelihood and impact.
- Support the delivery of information risk assessments | business impact assessments across the company.
- Create and distribute information security | business continuity communications, including articles, alert and hot topic information.
- Coordinate the implementation of information security | business continuity policies and procedures across the company.


The Candidate:

- Thorough understanding of the principles of end-to-end information security.
- Experience of maintaining an Information Security Management System to ISO27001.
- Information Security | Business Continuity qualifications (e.g. CISMP, CISSP, CISA, CISM, NCSC CCP, CBCI)
- Experience in assessing and managing risk in a complex environment.
- Good documentation and report writing skills.
- Comfortable working on own initiative and as part of a team.
- Experience working in a project-based environment.
- SC Clearance is mandatory



Vacancy Reference: CR/020427
Vacancy Owner: Shelly Dawett | shelly.dawett@shirleyparsons.com | (+44) 1296 611322 |(+44) 7725 258684