Senior Information Security SpecialistPermanent Salary: Between £57,000 - £69,000 plus business performance quarterly bonusHarrogate, North YorkshireWorking Arrangement: Hybrid – mostly in office workingYour newpanyI’m currently looking for an information security specialist to work for an esteemed Yorkshire FMCG organisation in a holistic Information Security role which will see you involved in areas ofernance, Risk andpliance, Cyber Defence and assisting their Managed Service Security Provider to an extent on operational cybersecurity.
This role is mainly on site in Harrogate, North Yorkshire with flexible working offered and limited hybrid working.The ideal candidate will be a seasoned security professional with a demonstrable background in the GRC space, a practical understanding of some of the core security frameworks (NIST, Cyber Essentials +, ISO27001), and a level of understanding of core security analysis tools (SIEM, IAM/PAM, Firewalls, EDR, Vulnerability scanning tools etc).Your new role will involve• Assisting with the implementation and enhancement of the security strategy as set forth by the Head of Cyber Security• Working with all areas of the business and building relationships with colleagues to gain a better understanding of wider business functions, their security requirements, and how best to coach employees on security principles that are applicable to their operational needs• Assisting with ensuring adherence to ISO27001 and other standards such as NIST and Cyber Essentials + where suitable• Assisting with security initiatives and implementations• Working alongside the Managed Service Security Provider, assisting with security operations where required, but mostly acting as the liaison between the MSSP and the business• Providing informed advice on security initiatives set out by the Group Head of Cyber Security• Overseeing the remediation of vulnerabilities raised by MSSP penetration tests, producing supporting documentation (risk ratings and updating risk register)• 3rd party and internal risk management• Maintaining a contemporary knowledge of current threats and cyber trends• Assisting in the identification and support of 3rd partypliance requirements
What you'll need to succeed• A strong information security (audit,ernance, risk andpliance) background• Experience working with 3rd party suppliers and MSSPs on the enhancement of organisational security• Some technical cyber experience (utilisation of SIEM/Vulnerability/IAM tools)• Excellentmunication skills alongside a proactive and business solution-focused mindset• Thorough understanding of, and practical application experience of,monplace security, risk andpliance frameworks (NIST, ISO27001, CE+)• Experience of working cross-functionally across IT, Transformation, GRC, audit and security operations teams• Experience providing security advice over a variety of projects• Strongernance Risk andpliance (GRC) knowledge, understanding and skillsetWhat you'll get in return• £57,000 - £67,000 per annum• Quarterly bonus based on business performance• 25 days holiday plus public holidays• Access to Private Medical Insurance• 5% Employer Pension Contribution• 4 x Life Assurance• Free meals and drinks on site• Free on-site parking