Job Responsibilities:
Day to Day management of Infosec & Data Privacy tickets and escalation as necessary.
Vendor Assessment maintain vendor records including updating SOC 2 / ISO reports for critical vendors.
Vendor Assessments Review new suppliers and ensure they meet BTS / ISO 27001 requirements for data security.
Maintaining ISO 27001 Policies for BTS Ensure policies are reviewed annually and changes documented to ensure compliance during internal and external audits.
Complete client data security questionnaires and online assessments as necessary.
Review various legal documents Data Processing Agreements MSAs and other contracts that require Infosec input.
Assist with the creation maintenance and delivery of cyber security awareness training to colleagues.
Maintain Risk Register to ISO 27001 standards and ensure all identified risks are documented remediated and reviewed as necessary to ensure minimal risk to the business.
Maintain Compliance Register with all relevant regulations legislation and contractual requirements GDPR CCPA etc.
Assist with remediation of Corrective Actions identified during internal and external audits.
Work with various teams and review DR practises and develop as necessary.
Monitor various sources for new or emerging threats that could impact the business and work within team to find solutions.
Liaise with stakeholders in relation to cyber security issues and provide future recommendation.
Skills:
Preferably CISSP certified If not would look to certify within 1 to 2 years with ongoing training in data security / privacy field.
Organised analytical and capable of working on multiple tasks simultaneously with exceptional attention to detail.
Highly proactive; always a step ahead and on top of tasks at hand whilst keeping an eye on the longterm goals.
Strong communication skills both verbally and written.
To be able to demonstrate workload prioritization focus on tasks and personal time management.
A relationship builder capable of managing various internal and external stakeholders.
A creative thinker who looks for opportunities to improve existing processes.
Independent a quick learner and comfortable taking on responsibility and testing new solutions and systems.
Experience in using Microsoft Office Suite is required (Outlook Excel Word & PowerPoint.).
A flexible attitude unphased by unexpected change and ambiguity.
A professional individual with a good sense of fun.