Skills

Risk Management Monitoring Risk Mitigation Recruitment

Job Specifications

Information Security Consultant/Officer

Hybrid working: 3 days per week required in the office in London.

DGH Recruitment are currently recruiting on behalf of a leading global law firm who are looking for an Information Security Consultant/Officer to join the team on a permanent basis.

My client are looking for an individual that has been an information security SME on technical refresh programmes (ie cloud transformation, AI). The role will suit someone who is comfortable working in a business facing capacity with key business stakeholders, advising on regulations and specific information security requirements.

Responsibilities:
- Evaluate security risks of internal projects and associated third-party vendors considering factors such as
security, privacy, and compliance.
- Supporting programs of work including vendor risk assessments. To ensure these assessments are completed based on established methodologies ensuring that the ISMS and Governance frameworks are adhered to.
- Develop, maintain and follow security assessment frameworks and methodologies for project security assessments and associated third party assurance.
- Provide guidance to procurement teams regarding alignment to mandatory security requirements and standards for vendor selection and ongoing monitoring.
- Apply risk management principles to identify, assess, and prioritise security risks.
- Collaborate with senior stakeholders, project managers and technical teams, to identify and assess security risks proposing appropriate risk mitigation strategies.

Required Skills/Experience:
- Professional certifications such as CISA, CISM, CISSP or similar credentials are preferred.
- Strong knowledge of information security principles, best practices, and standards (eg, ISO 27001, NIST).
- Experience in supporting projects from inception through to completion.
- Experience in stakeholder engagement, supporting ISMS governance and implementation across multiple projects or programs of work.
- Experience in co-ordinating and participating in Security audits.
- Experience in conducting vendor risk assessments and project security risk assessments.
- Knowledge of regulatory requirements related to data privacy and protection (eg, GDPR, CCPA).

Information Security Consultant/Officer

In accordance with the Employment Agencies and Employment Businesses Regulations 2003, this position is advertised based upon DGH Recruitment Limited having first sought approval of its client to find candidates for this position.

DGH Recruitment Limited acts as both an Employment Agency and Employment Business

About the Company

At DGH Recruitment Ltd we pride ourselves on being an approachable, open, and trusted partner within the Talent Acquisition industry. We strive to find the best people in our markets and place them within our portfolio of clients. Founded in 1998, London was our backyard, our mission was to meet and build relationships with as many clients and candidates as physically possible. We now have clients and have placed candidates all over the globe, and we look forward to providing our services in a Sustainable environment. Know more