• Support the Information Security Manager in advising stakeholders on best practices to meet business objectives while maintaining security compliance.
• Assist in implementing and aligning security controls with corporate and departmental strategies, particularly around ISO 27001:2022 standards.
• Participate in internal security assessments and liaise with external parties to ensure robust and efficient solutions are adopted.
• Keep informed of emerging threats and developments in cyber and information security, providing up-to-date risk assessments and recommendations.
• Ensure policies and controls align with relevant legislation (e.g. GDPR) and internal compliance frameworks.
• Support business continuity and incident response planning to minimise operational disruption.
• Contribute to internal audits and facilitate compliance with regulatory standards.

Key Skills and Experience:

• Ideally two years of experience delivering and implementing information security solutions in a business environment.
• Strong understanding of information and IT security challenges and standards.
• Solid working knowledge of security technologies (e.g. Endpoint Protection, Data Protection, Cloud Security) and cyber capabilities (e.g. SIEM, SOC, Vulnerability Management).
• Familiarity with recognised frameworks such as ISO 27001, ISO 22301, NIST, COBIT, or ISF.
• Experience supporting security strategy within cloud-based environments.
• Demonstrated ability to manage or contribute to security-related projects.
• Strong communication and stakeholder engagement skills, with the ability to convey complex topics clearly and persuasively.

Desirable Qualifications:

• Degree in Information Systems or a related field.
• Industry certifications such as CISSP, CISM, ISO 27001, or ISO 22301 would be advantageous.

INDPERM