Information Security Officer (ISO 27001/NIST/CISA/CISM)

Hybrid working policy: 2-3 days per week in the office.

DGH Recruitment are currently recruiting on behalf of a leading global client who are looking for an Information Security Officer to join the team on a permanent basis in their London office.

The role will work closely with cross functional teams to ensure compliance with security standards and best practices.

Core Responsibilities:
- Evaluate risks and conduct vendor risk assessments and project security risk assessments based on established methodologies and frameworks.
- Identify vulnerabilities and potential risks and provide recommendations for risk mitigation strategies.
- Ensure compliance with security policies, standards, and procedures.
- Develop and maintain security assessment frameworks and methodologies for vendor risk assessments and project security risk assessments.
- Participate in incident response activities and contribute to security incident investigations and remediation efforts.
- Review vendor security documentation, such as questionnaires, audits, and certifications, to evaluate their security posture.

Required Skills/Experience:
- Strong knowledge of information security principles, best practices, and standards (eg, ISO 27001, NIST).
- Experience in conducting vendor risk assessments and project security risk assessments.
- Familiarity with security frameworks and assessment methodologies.
- Professional certifications such as CISA, CISM, or similar (preferred)
- Knowledge of regulatory requirements related to data privacy and protection (preferred)

Information Security Officer (ISO 27001/NIST/CISA/CISM)

In accordance with the Employment Agencies and Employment Businesses Regulations 2003, this position is advertised based upon DGH Recruitment Limited having first sought approval of its client to find candidates for this position.

DGH Recruitment Limited acts as both an Employment Agency and Employment Business