Information Security Assessor - IT Security

This awarding-winning leading provider of IT services puts people first. To make their customers, employees and partners happy!

Their core values are as follows and guide them every day - They say what they are going to do and do what they say. They deliver their promises - They have an unrivalled customer service ethos to do the best job they possibly can - They pursue technical growth and learning, and reward performance - They listen first to truly understand their customers' needs. Before recommending solutions.

They are looking for an Information Security Assessor who is responsible for conducting security control assessments, measuring organisations against the Cyber Essentials, Cyber Essentials Plus and IASME* governance standards.

The Assessor will decide if proper security controls are in place and, if they are not, determine what risk this presents, and offer solutions to the customer.*Cyber Essentials, Cyber Essentials Plus and IASME training and certification will be provided

Essential Duties and Responsibilities:

- Responsible for conducting information security assurance, and security compliance initiatives for customers
- Create and deliver security assessment reports confirming readiness of services or infrastructures for audit and/or certification
- Identify and provide guidance on improved IT security systems and controls, working with agreed vendors and key partners to deliver improvements
- Convert knowledge gained into technical materials such as illustrations, diagrams, manuals, flowcharts, system documentation, policy documents, guidance and other graphical representations
- Act as a liaison for the sales team within the company to offer guidance, expertise and to further business opportunities
- Establish credibility and maintain strong working relationships with stakeholders involved in information security assurance and security compliance matters

Knowledge, Skills, and/or Abilities Required:

- Demonstrate 2 years' cyber security relevant experience and hold one of the following qualifications
- ISC2 Certified Information Systems Security Professional (CISSP)
- ISACA Certified Information Security Manager (CISM)
- ISO27001 Lead Auditor
- Certified Professional (CCP) scheme - either SIRA, IA Auditor or IA Architect roles at any level
- Full member of Institute of Information Security Professionals (IISP)
- Ability to demonstrate understanding of Information Technology concepts (such as networking, access control, server functions), as well as cloud concepts
- Proven ability to work with limited brief and guidance
- Effective data analysis and interpretation skills; able to draw and present measurable conclusions

8:30-17:00 Mon-Fri
Edinburgh and at client sites across Scotland and UK
Salary: Negotiable - depending on experience

Perks at Work voucher scheme
Employee Assistance Program; training to attain certificates access to online learning
Pension, and incremental annual leave allowance.