Job Description: The Exeter is seeking a highly skilled Information Security GRC Officer to join our dynamic team. The successful candidate will be responsible for maintaining our ISO27001 certification, probing systems and processes to ensure appropriate controls are applied, providing security advice based on best practices, and evaluating and assessing risks associated with new suppliers, software, systems, or technologies. This role involves conducting security reviews and analysing IT requirements to provide objective advice on best practice IT security. Additionally, the specialist will identify and mitigate network vulnerabilities, stay updated with the latest security and technology developments, and research and evaluate emerging cyber security threats. In this role, you will plan and test for disaster recovery and business continuity, monitor for attacks, intrusions, and unusual activities, and ensure multi-factor authentication (MFA) coverage across systems. You will be responsible for monitoring identity and access management, controlling API security, and ensuring the secure use of software libraries by developers. Regular tasks include maintaining security systems, conducting personalised security training, using advanced analytic tools to determine emerging threat patterns, and conducting phishing simulations and internal audits. Furthermore, you will investigate security alerts, provide support for incident response, liaise with stakeholders on cyber security issues, and generate reports for both technical and non-technical staff. You will maintain an information security risk register, assist with internal and external audits, and monitor and respond to phishing emails and pharming activity. The role also involves influencing IT security development best practices, participating in architectural decisions, implementing effective controls, and ensuring IT security considerations are factored into architectural and IT change decisions. The ideal candidate will have a strong background in IT security, excellent analytical skills, and the ability to stay ahead of emerging threats. If you are passionate about cyber security and have a proactive approach to preventing potential breaches, we would love to hear from you. Join us at The Exeter and contribute to maintaining the highest standards of information security within our organisation.