DIRECT APPLICATIONS – NO AGENCIES PLEASE
An exciting opportunity has arisen for a dedicated Cyber and Information Security Compliance Officer to join the Information Services Division at the University of Strathclyde. This pivotal role within the IT Services department will be instrumental in advancing the University's cybersecurity posture, ensuring compliance with industry standards, and driving key information security initiatives.
The University of Strathclyde is a leading international technological university, inspired by our founding mission to be a “place of useful learning” and characterised by leading research and business partnerships that meet global challenges. We are investing in our Cyber resilience to ensure that we can defend the University from cybersecurity threats and minimise the impact of such threats on the University’s activities.
Recognising the disruption and risk that organisations can face from cyber threats, this role will be one of strategic importance, guiding the organisation through the complex, ever-changing, and ever-growing cyber threat landscape.
As a proactive and technically knowledgeable professional, you will contribute to the development and implementation of cybersecurity policies, manage the University's Cyber Awareness Programme, and contribute to the ongoing enhancement of the Information Security Management System (ISMS).
Your efforts will play a critical role in protecting the University from cyber threats and ensuring that we meet the stringent requirements set by our auditors, funders, and strategic objectives.
The successful candidate will have knowledge and experience in the majority of the following:
1. Policy Development and Consultation: Assist in the development, review, and consultation of information security policies, standards, and guidelines aligned with industry best practices and the University's specific needs.
2. ISMS Contribution: Support the development and maintenance of the University’s ISMS, ensuring compliance with frameworks like ISO 27001, Cyber Essentials, ScotGov Cyber Resilience Framework, PCI-DSS, and GDPR.
3. Cybersecurity Compliance and Training Liaison: Serve as the primary point of contact for cybersecurity compliance, engagement, and training across the University.
4. Risk Management: Apply a risk-based approach to cybersecurity, assisting departments with risk assessments and ensuring appropriate management and mitigation strategies.
5. Cyber Awareness Programme Management: Oversee the University's Cyber Awareness Programme, curating and maintaining training materials, promoting participation, and monitoring its effectiveness.
In return, you will receive ‘on-the-job’ training, a generous holiday package and be eligible to subscribe to a variety of schemes associated with being an employee of the University including: generous employer contributions to your pension; a world-class Sport Centre; family-friendly policies; and various additional incentives including a Cycle Scheme. The University also has on-site childcare and parking for which you can apply.
The post is located within the University’s Information Services directorate and will report to the Cybersecurity Manager.
The post is offered on a full-time basis (35 hours a week). Hours are likely to be worked on a flexible basis, usually with a combination of home and campus working, in line with the University’s Agile Working Policy. All successful candidates must be willing to be located in the UK.
Sponsorship and Skilled Worker Visa
Please note the vacancy for this role does not meet the requirements for sponsorship under the Skilled Worker visa route. Candidates are welcome to apply if they have an alternative right to work for this role.
Interviews are scheduled to take place on 29 January 2025.
For informal enquiries, please contact Andy Laszlo, Cybersecurity Manager at andy.laszlo@strath.ac.uk
#J-18808-Ljbffr