Information Security Consultant ( Third Party Assurance )

Information Security Consultant ( Third Party Supplier Assurance )

My Client, a financial services provider, based in Manchester are looking to grow their information security team to support its expanding presence in the UK. This role will initially be a 6 month contract to focus on the third party supplier assurance, whilst they find the right permanent incumbent for the role. This role may evolve into a broader security focused role, so a breadth and depth of experience across all areas of security would be advantageous.

Main Duties;

• Third Party supplier assurance against - ISO27001, PCI DSS -questionnaires as well as site reviews.
• Perform risk and control assessments and finding cost-effective Security solutions that efficiently support customer needs.
• Create, implement and maintain the UK information Security Rules in line with group requirements.
• Provide appropriate advice and interpretation of Information Security best practice and UK regulatory requirements as new products/ systems are developed.
• Provide assurance activities to assess the effective implementation and operation of systems and controls to manage the information security risks.
• Respond to queries from the branches and other colleagues on information security.

Key Requirements;

• An understanding of Information Security best practice and regulatory requirements with experience in business continuity and disaster recovery.
• Hold or have the capability to attain appropriate external qualifications, e.g. CISSP.
• Be able to interact proactively and confidently with all areas of business, including senior management and product owners.
• Have excellent interpersonal and communication skills in both written and spoken English.
• Experience working with multiple stakeholders, in a highly regulated environment.