Role Summary
Be at the forefront of ICT improvements and transformation within the Fire & Rescue Service (AF&RS). We are seeking a visionary leader to shape our future ICT and digital strategy, make further improvements to our infrastructure and ensure our ICT systems are resilient, reliable, and accessible to all staff 24/7.
This is a new role leading the development of an integrated ICT strategy and technology roadmap and overseeing the delivery of technology initiatives. This business-critical position will require you to work effectively with key stakeholders to create and implement an ICT strategy which aligns with our organisational goals and ambitions, ensures the integration and enhancement of our systems and improved user experience.
This role will require an ambitious, forward-thinking individual who has the technical knowledge, drive and passion to make a big difference. You will have a unique opportunity to make the role your own and bring your experience, ideas, influencing skills and technical expertise to our organisation. With challenging budgets, a creative and innovative approach is key, as is the exploration of potential funding sources.
Some of the things you’ll be doing
Strategic Leadership : Drive continuous improvement, culture change, and effective performance management. Act as the advocate for AF&RS’s digital vision, engaging leadership and representing AF&RS in local and national digital forums.
Expert Consultation : Offer expert guidance on ICT matters to senior stakeholders and the Fire Authority, enabling discussions on modern ICT and digital technology.
System Management : Ensure the efficiency, reliability, security, and cost-effectiveness of ICT systems and technology. Oversee external IT helpdesk providers and business continuity plans.
Infrastructure Enhancement : Drive continual improvements to the ICT infrastructure to ensure a solid foundation and enhanced user experience. Collaborate with stakeholders to define and implement improvements, presenting robust business cases for investment.
Digital Horizon-Scanning : Stay updated on digital developments and evaluate new technologies potential benefits, risks, and affordability aligned with the ICT strategy.
Strategy Development : Lead the creation and implementation of AF&RS’s cohesive ICT and Digital Strategy, fostering innovative and integrated improvements.
Project Oversight : Oversee the successful delivery of all ICT, digital, and systems projects. Establish governance structures, aligning with the ICT strategy and legal compliance.
Change Management : Implement efficient change processes, improving service quality and business continuity while minimising disruption.
Risk Management: Proactively assess and monitor ICT-related risks across AF&RS, implementing effective controls and mitigations.
Resource Optimisation : Develop an appropriate ICT organisational structure, optimising internal and external resources to ensure delivery and an integrated approach.
Team Leadership : Provide training and mentoring to internal ICT staff, fostering a responsive and agile cross-functional team.
Stakeholder Engagement: Liaise with stakeholders across AF&RS, building strong internal networks to maximise technology benefits.
Policy Implementation : Develop and implement up-to-date ICT policies ensuring robust controls across AF&RS. Liaise with internal data protection teams, ensuring ICT developments are compliant with relevant information legislation. Act as the Deputy Senior Risk Owner ensuring high-quality governance standards and compliance.
Training Alignment : Identify and evaluate ICT training aligned with the ICT strategy and budget requirements.
Budget Management : Manage ICT budgets aligned with the ICT strategy, forecasting and reviewing budgetary arrangements and exploring potential funding opportunities.
What we’ll need from you:
Essential:
Proven experience in senior ICT leadership role, driving digital transformation and strategy (ideally within the emergency services or public sector – but not essential).
Demonstrable experience in design, sourcing, transition, delivery and implementation of new technology and data capabilities.
Excellent up-to-date technical knowledge of ICT and the technology landscape.
Extensive knowledge of digital, data and technology regulations and best practice methodologies (e.g. ITIL, ISO) and performance benchmarking. You will also maintain up-to-date technical knowledge of ICT and the technology landscape.
Significant experience of leading and managing high performing teams (via direct or matrix management).
Proven experience of strategic service planning, business processes, developing, leading, and implementing IT/ICT strategies and change programs.
Experience of successfully managing high quality business-as-usual (BAU) ICT, while also inspiring, leading, and driving innovative solutions.
Proven experience of proactively managing business continuity and cyber security arrangements.
Significant experience of dealing with vendors and third parties including experience of procuring, negotiating, and robustly managing business-critical service contractors.
Degree level education, or equivalent, in business, computer science or a related field of study, or proven relevant business experience.
Professional ICT qualifications (such as ITIL or accredited status such as Chartered IT Professional CITP), or equivalent through a combination of proven relevant training, experience and evidenced continuing professional development.
Highly effective communication and influencing skills across the full breadth of written, verbal, presentation, and digital media. You will be able to engage, advise and explain technical matters in a non-technical way.
Adaptable, inclusive, and values-based leadership and people management skills.
Relationship building and collaboration skills with the ability to influence strategic thinking and approaches to complex service issues.
Strong analytical, research, numerical and decision-making skills, to deal with complex service delivery.
Ability to manage and prioritise high workloads, with pressing and conflicting deadlines.
Desirable:
Comprehensive budget-creation and budget-management experience including identifying and evaluating opportunities, negotiation, and delivering efficiencies.
Experience of working in a climate of transformation and/or continuous improvement and supporting others in uncertain times.
Experience of working for an emergency service or local authority.
Experience of Information and Data Governance and/or of being a Senior Risk Information Officer (SIRO) or Deputy SIRO.
Experience of portfolio and project management methodologies and tailoring these for significant ICT projects and organisational context.
Proven ICT risk management experience.
High level of political awareness and acuity to interact with senior stakeholders and elected Members.
Foundation or Practitioner level qualification in programme or project management.
What you can expect in return
27 days annual holiday (plus public holidays) rising to 31 days after 5 years, and 32 after 10 years of service
Local Government Pension - Defined Benefit Scheme
Flexible and hybrid working
Electric Vehicle Salary Sacrifice Scheme
Cycle to Work scheme
Welfare and Wellbeing services
Staff Engagement Groups
Access to a Medical Intervention Scheme which can support staff to access private medical assessments and treatments
Access to Blue Light card with offers online and high street discounts
Use of the multi-gym, sports hall, restaurant, free parking, and beautiful open surroundings at our Headquarters in Portishead
Please note - as this post is based at our Headquarters which we share with Avon & Somerset Police, the successful applicant will be required to undergo a security clearance check & DBS check.
Further Information
If you would like to have an informal conversation with the hiring manager for this role please contact recruitment@avonfire.gov.uk to request this.
How to apply: The full job description can be found on our careers pages: Head of ICT | Yes You Can! The Avon Fire & Rescue Service Job . Once you have read the job description please submit a tailored CV demonstrating how your skills and experience match the requirements of the role.
Late applications will not be accepted. Please quote job reference number 1023 [JD number] on any communications. Thank you.
Avon Fire & Rescue Service is committed to securing equality of opportunity. W e welcome applications from all members of our community who are currently under-represented at Avon Fire & Rescue Service, particularly women, Disabled people and members of ethnic minority communities.
Dec 20, 2023
Full time
Role Summary
Be at the forefront of ICT improvements and transformation within the Fire & Rescue Service (AF&RS). We are seeking a visionary leader to shape our future ICT and digital strategy, make further improvements to our infrastructure and ensure our ICT systems are resilient, reliable, and accessible to all staff 24/7.
This is a new role leading the development of an integrated ICT strategy and technology roadmap and overseeing the delivery of technology initiatives. This business-critical position will require you to work effectively with key stakeholders to create and implement an ICT strategy which aligns with our organisational goals and ambitions, ensures the integration and enhancement of our systems and improved user experience.
This role will require an ambitious, forward-thinking individual who has the technical knowledge, drive and passion to make a big difference. You will have a unique opportunity to make the role your own and bring your experience, ideas, influencing skills and technical expertise to our organisation. With challenging budgets, a creative and innovative approach is key, as is the exploration of potential funding sources.
Some of the things you’ll be doing
Strategic Leadership : Drive continuous improvement, culture change, and effective performance management. Act as the advocate for AF&RS’s digital vision, engaging leadership and representing AF&RS in local and national digital forums.
Expert Consultation : Offer expert guidance on ICT matters to senior stakeholders and the Fire Authority, enabling discussions on modern ICT and digital technology.
System Management : Ensure the efficiency, reliability, security, and cost-effectiveness of ICT systems and technology. Oversee external IT helpdesk providers and business continuity plans.
Infrastructure Enhancement : Drive continual improvements to the ICT infrastructure to ensure a solid foundation and enhanced user experience. Collaborate with stakeholders to define and implement improvements, presenting robust business cases for investment.
Digital Horizon-Scanning : Stay updated on digital developments and evaluate new technologies potential benefits, risks, and affordability aligned with the ICT strategy.
Strategy Development : Lead the creation and implementation of AF&RS’s cohesive ICT and Digital Strategy, fostering innovative and integrated improvements.
Project Oversight : Oversee the successful delivery of all ICT, digital, and systems projects. Establish governance structures, aligning with the ICT strategy and legal compliance.
Change Management : Implement efficient change processes, improving service quality and business continuity while minimising disruption.
Risk Management: Proactively assess and monitor ICT-related risks across AF&RS, implementing effective controls and mitigations.
Resource Optimisation : Develop an appropriate ICT organisational structure, optimising internal and external resources to ensure delivery and an integrated approach.
Team Leadership : Provide training and mentoring to internal ICT staff, fostering a responsive and agile cross-functional team.
Stakeholder Engagement: Liaise with stakeholders across AF&RS, building strong internal networks to maximise technology benefits.
Policy Implementation : Develop and implement up-to-date ICT policies ensuring robust controls across AF&RS. Liaise with internal data protection teams, ensuring ICT developments are compliant with relevant information legislation. Act as the Deputy Senior Risk Owner ensuring high-quality governance standards and compliance.
Training Alignment : Identify and evaluate ICT training aligned with the ICT strategy and budget requirements.
Budget Management : Manage ICT budgets aligned with the ICT strategy, forecasting and reviewing budgetary arrangements and exploring potential funding opportunities.
What we’ll need from you:
Essential:
Proven experience in senior ICT leadership role, driving digital transformation and strategy (ideally within the emergency services or public sector – but not essential).
Demonstrable experience in design, sourcing, transition, delivery and implementation of new technology and data capabilities.
Excellent up-to-date technical knowledge of ICT and the technology landscape.
Extensive knowledge of digital, data and technology regulations and best practice methodologies (e.g. ITIL, ISO) and performance benchmarking. You will also maintain up-to-date technical knowledge of ICT and the technology landscape.
Significant experience of leading and managing high performing teams (via direct or matrix management).
Proven experience of strategic service planning, business processes, developing, leading, and implementing IT/ICT strategies and change programs.
Experience of successfully managing high quality business-as-usual (BAU) ICT, while also inspiring, leading, and driving innovative solutions.
Proven experience of proactively managing business continuity and cyber security arrangements.
Significant experience of dealing with vendors and third parties including experience of procuring, negotiating, and robustly managing business-critical service contractors.
Degree level education, or equivalent, in business, computer science or a related field of study, or proven relevant business experience.
Professional ICT qualifications (such as ITIL or accredited status such as Chartered IT Professional CITP), or equivalent through a combination of proven relevant training, experience and evidenced continuing professional development.
Highly effective communication and influencing skills across the full breadth of written, verbal, presentation, and digital media. You will be able to engage, advise and explain technical matters in a non-technical way.
Adaptable, inclusive, and values-based leadership and people management skills.
Relationship building and collaboration skills with the ability to influence strategic thinking and approaches to complex service issues.
Strong analytical, research, numerical and decision-making skills, to deal with complex service delivery.
Ability to manage and prioritise high workloads, with pressing and conflicting deadlines.
Desirable:
Comprehensive budget-creation and budget-management experience including identifying and evaluating opportunities, negotiation, and delivering efficiencies.
Experience of working in a climate of transformation and/or continuous improvement and supporting others in uncertain times.
Experience of working for an emergency service or local authority.
Experience of Information and Data Governance and/or of being a Senior Risk Information Officer (SIRO) or Deputy SIRO.
Experience of portfolio and project management methodologies and tailoring these for significant ICT projects and organisational context.
Proven ICT risk management experience.
High level of political awareness and acuity to interact with senior stakeholders and elected Members.
Foundation or Practitioner level qualification in programme or project management.
What you can expect in return
27 days annual holiday (plus public holidays) rising to 31 days after 5 years, and 32 after 10 years of service
Local Government Pension - Defined Benefit Scheme
Flexible and hybrid working
Electric Vehicle Salary Sacrifice Scheme
Cycle to Work scheme
Welfare and Wellbeing services
Staff Engagement Groups
Access to a Medical Intervention Scheme which can support staff to access private medical assessments and treatments
Access to Blue Light card with offers online and high street discounts
Use of the multi-gym, sports hall, restaurant, free parking, and beautiful open surroundings at our Headquarters in Portishead
Please note - as this post is based at our Headquarters which we share with Avon & Somerset Police, the successful applicant will be required to undergo a security clearance check & DBS check.
Further Information
If you would like to have an informal conversation with the hiring manager for this role please contact recruitment@avonfire.gov.uk to request this.
How to apply: The full job description can be found on our careers pages: Head of ICT | Yes You Can! The Avon Fire & Rescue Service Job . Once you have read the job description please submit a tailored CV demonstrating how your skills and experience match the requirements of the role.
Late applications will not be accepted. Please quote job reference number 1023 [JD number] on any communications. Thank you.
Avon Fire & Rescue Service is committed to securing equality of opportunity. W e welcome applications from all members of our community who are currently under-represented at Avon Fire & Rescue Service, particularly women, Disabled people and members of ethnic minority communities.
ABOUT THE ROLE
Are you passionate about protecting Cyber Security?
Do you want to make a real difference in the fight against cybercrime in local government?
Are you passionate about making a difference in your community?
If so, we want you to join our team!
We seek a highly motivated and experienced Cyber Security & Networks Manager to join our team. Stevenage Borough Council are a leading local authority in Cyber Security in the UK and pilot cyber security standards for The Department for Levelling Up, Housing and Communities (DLUHC). This is an exciting opportunity to be at the forefront of Cyber Security in the public sector. The ideal candidate will have a strong understanding of cyber security principles and associated technology risk management. They will also have experience in managing and leading a team of IT professionals.
Accountable for Cyber security, you will identify and ensure the security of the council’s IT Applications and Digital Solutions. You will lead in evaluating new and existing projects, software and hardware products, and vendors, including examining vendor contracts and terms of service. You will support teams across the council to develop their understanding of security cyber risks. You will manage a small team of two Senior Network and Security Engineers
You will take the lead on cyber security and network for the Shared IT service, which supports over 1,000 users across Stevenage Borough Council and East Herts District Council and will put in place controls over security systems, such as firewalls, data protection controls, patching, encryption, vulnerability scanning and penetration testing.
You will be responsible for achieving compliance with Cyber Essentials Plus, Cyber Assessment Framework (CAF) and Public Sector Network (PSN) and related government frameworks, including those of the National Cyber Security Centre, the Information Commissioners Office (ICO)
ABOUT YOU
The successful candidate will have
Ability to work in a high-pressure environment and make sound decisions in emergency situations while empathising with customers and responding sympathetically to
Extensive knowledge of all IT security aspects, including audit response, oversight, and scrutiny, ICO responses, Information Governance, Information Assurance, IT Asset Management policies, Quality Assurance, Test Strategies, PSN and PCI and other relevant compliance frameworks, Disaster recovery and Business continuity
Extensive experience working as part of a multidiscipline ICT team in a complex organisation, ideally a local authority.
OUR BENEFITS
Pension Scheme: We offer a career average pension scheme, providing generous benefits upon retirement, as well as a lump sum and pensions for dependants
Flexible working: available upon request, subject to operational requirements
Part-time and job share opportunities - all our full time vacancies are open to job share unless otherwise stated
A variety of different types of paid leave covering emergency and planned leave, maternity, paternity, adoption and parental leave
25 days holiday rising to 31 days (depending on Local Government service)
An extensive range of learning and development opportunities
Employee Assistance Programme – 24/7 Confidential advice and support on personal, work, family, and relationship issues
Discounted health and fitness membership
Trade Unions: For a small fee, all employees have the opportunity to join a Trade Union
HOW TO APPLY
All applications must be made on online - please visit https://bit.ly/45Yo0Ke
For an informal discussion about this role please contact
Name Matt Canterford
Job Title Assistant Director and Chief Technology Officer
Phone Number 07706 349657
Email matt.canterford@stevenage.gov.uk
Closing date for receipt of applications : 26 June 2023
Interviews will be held the week commencing: 3 July 2023
Please note that if we receive a large volume of applications for this role, we reserve the right to close this vacancy ahead of the published closing date
Stevenage Borough Council (SBC) is committed to safeguarding and promoting the welfare of children, young people and vulnerable adults and expects all staff, volunteers and recruitment candidates to share this commitment. SBC shall take all reasonable steps to employ staff who are safe to work with children, young people and vulnerable adults. For posts identified with regular contact with these groups applicants will be required to undertake a Value Based Interview. The council supports the legislative requirements for employing and maintaining safer staff and the guidance specified by Hertfordshire Safeguarding Adults Board
Stevenage Borough Council is committed to Equal Opportunities for All. For further information please click https://www.stevenage.gov.uk/about-the-council/jobs-and-careers/equal-opportunities
Jun 05, 2023
Full time
ABOUT THE ROLE
Are you passionate about protecting Cyber Security?
Do you want to make a real difference in the fight against cybercrime in local government?
Are you passionate about making a difference in your community?
If so, we want you to join our team!
We seek a highly motivated and experienced Cyber Security & Networks Manager to join our team. Stevenage Borough Council are a leading local authority in Cyber Security in the UK and pilot cyber security standards for The Department for Levelling Up, Housing and Communities (DLUHC). This is an exciting opportunity to be at the forefront of Cyber Security in the public sector. The ideal candidate will have a strong understanding of cyber security principles and associated technology risk management. They will also have experience in managing and leading a team of IT professionals.
Accountable for Cyber security, you will identify and ensure the security of the council’s IT Applications and Digital Solutions. You will lead in evaluating new and existing projects, software and hardware products, and vendors, including examining vendor contracts and terms of service. You will support teams across the council to develop their understanding of security cyber risks. You will manage a small team of two Senior Network and Security Engineers
You will take the lead on cyber security and network for the Shared IT service, which supports over 1,000 users across Stevenage Borough Council and East Herts District Council and will put in place controls over security systems, such as firewalls, data protection controls, patching, encryption, vulnerability scanning and penetration testing.
You will be responsible for achieving compliance with Cyber Essentials Plus, Cyber Assessment Framework (CAF) and Public Sector Network (PSN) and related government frameworks, including those of the National Cyber Security Centre, the Information Commissioners Office (ICO)
ABOUT YOU
The successful candidate will have
Ability to work in a high-pressure environment and make sound decisions in emergency situations while empathising with customers and responding sympathetically to
Extensive knowledge of all IT security aspects, including audit response, oversight, and scrutiny, ICO responses, Information Governance, Information Assurance, IT Asset Management policies, Quality Assurance, Test Strategies, PSN and PCI and other relevant compliance frameworks, Disaster recovery and Business continuity
Extensive experience working as part of a multidiscipline ICT team in a complex organisation, ideally a local authority.
OUR BENEFITS
Pension Scheme: We offer a career average pension scheme, providing generous benefits upon retirement, as well as a lump sum and pensions for dependants
Flexible working: available upon request, subject to operational requirements
Part-time and job share opportunities - all our full time vacancies are open to job share unless otherwise stated
A variety of different types of paid leave covering emergency and planned leave, maternity, paternity, adoption and parental leave
25 days holiday rising to 31 days (depending on Local Government service)
An extensive range of learning and development opportunities
Employee Assistance Programme – 24/7 Confidential advice and support on personal, work, family, and relationship issues
Discounted health and fitness membership
Trade Unions: For a small fee, all employees have the opportunity to join a Trade Union
HOW TO APPLY
All applications must be made on online - please visit https://bit.ly/45Yo0Ke
For an informal discussion about this role please contact
Name Matt Canterford
Job Title Assistant Director and Chief Technology Officer
Phone Number 07706 349657
Email matt.canterford@stevenage.gov.uk
Closing date for receipt of applications : 26 June 2023
Interviews will be held the week commencing: 3 July 2023
Please note that if we receive a large volume of applications for this role, we reserve the right to close this vacancy ahead of the published closing date
Stevenage Borough Council (SBC) is committed to safeguarding and promoting the welfare of children, young people and vulnerable adults and expects all staff, volunteers and recruitment candidates to share this commitment. SBC shall take all reasonable steps to employ staff who are safe to work with children, young people and vulnerable adults. For posts identified with regular contact with these groups applicants will be required to undertake a Value Based Interview. The council supports the legislative requirements for employing and maintaining safer staff and the guidance specified by Hertfordshire Safeguarding Adults Board
Stevenage Borough Council is committed to Equal Opportunities for All. For further information please click https://www.stevenage.gov.uk/about-the-council/jobs-and-careers/equal-opportunities
An exciting opportunity has arisen to join the small Finance and Governance team at the well-loved local charity Hospiscare as Governance and Data Protection Officer In this role you'll play an important part in safeguarding the organisation's information. Your primary focus will be ensuring compliance with information management legislation and policies, assessing risks and implementing effective controls. You'll have technical understanding of data protection legislation, together with in-depth knowledge of cyber security principles and risk management. 22.5 hours/week, 3 days Monday to Friday, with the possibility of some hybrid working Hospiscare Band 6: £35,392 - £42,627 per annum pro rata What you'll do: Manage a range of Data Protection and Security processes and protocols to ensure that Hospiscare is compliant with its statutory responsibilities. Assist with the maintenance and development of the charity's Corporate Governance Framework and associated processes. Produce Hospiscare's annual Data Protection and Security (DPS) Toolkit submission Advise staff across the organisation and deliver training in relation to Data Protection and Security and GDPR. In return you'll work for an employer of choice in the region and enjoy benefits such as opportunities for further career development, a supportive and collaborative work environment, Employee Assistance Programme, cycle to work scheme, eye care vouchers, and much more. Full job description Closing date: Sunday 7 April 2024 Interviews: Friday 19 April 2024 Hospiscare is Disability Confident and a Mindful Employer which promotes equal opportunities for all and welcomes applications from all sections of the community regardless of sex, disability or any other protected characteristic.
Mar 29, 2024
Full time
An exciting opportunity has arisen to join the small Finance and Governance team at the well-loved local charity Hospiscare as Governance and Data Protection Officer In this role you'll play an important part in safeguarding the organisation's information. Your primary focus will be ensuring compliance with information management legislation and policies, assessing risks and implementing effective controls. You'll have technical understanding of data protection legislation, together with in-depth knowledge of cyber security principles and risk management. 22.5 hours/week, 3 days Monday to Friday, with the possibility of some hybrid working Hospiscare Band 6: £35,392 - £42,627 per annum pro rata What you'll do: Manage a range of Data Protection and Security processes and protocols to ensure that Hospiscare is compliant with its statutory responsibilities. Assist with the maintenance and development of the charity's Corporate Governance Framework and associated processes. Produce Hospiscare's annual Data Protection and Security (DPS) Toolkit submission Advise staff across the organisation and deliver training in relation to Data Protection and Security and GDPR. In return you'll work for an employer of choice in the region and enjoy benefits such as opportunities for further career development, a supportive and collaborative work environment, Employee Assistance Programme, cycle to work scheme, eye care vouchers, and much more. Full job description Closing date: Sunday 7 April 2024 Interviews: Friday 19 April 2024 Hospiscare is Disability Confident and a Mindful Employer which promotes equal opportunities for all and welcomes applications from all sections of the community regardless of sex, disability or any other protected characteristic.
Job Opportunity: Data Protection Officer with Compliance Line 2 Expertise Are you passionate about safeguarding data integrity and compliance within the dynamic realm of financial technology? Join our innovative fintech business as a Data Protection Officer (DPO) and play a pivotal role in ensuring the security and integrity of our data assets. About Us: My client are revolutionising the way financial services are delivered. With cutting-edge technology and a commitment to excellence, they empower individuals and businesses to thrive in the digital economy. As they continue to grow, we recognise the paramount importance of data protection and compliance, which is why they are seeking a dedicated professional to join our team. Role Overview: As a Data Protection Officer, you'll be responsible for overseeing all aspects of data protection and privacy compliance within their organisation. Your expertise in Compliance Line 2 will be instrumental in designing and implementing robust policies and procedures to ensure regulatory adherence and mitigate risks effectively. Key Responsibilities: Develop and maintain comprehensive data protection policies, protocols, and procedures in alignment with relevant regulations such as GDPR, CCPA, etc. Conduct regular audits and assessments to evaluate the effectiveness of existing data protection measures and identify areas for improvement. Provide guidance and support to internal stakeholders on data protection best practices and compliance requirements. Serve as the primary point of contact for data protection authorities, ensuring timely and transparent communication regarding data incidents and regulatory inquiries. Collaborate closely with cross-functional teams, including Legal, IT, and Compliance, to address data protection issues and drive continuous improvement initiatives. Stay abreast of emerging regulatory trends and industry developments to proactively adapt our data protection strategies and policies. Qualifications: Bachelor's degree in Law, Information Security, or related field; advanced certifications such as CIPP/E, CIPM, CIPT are highly desirable. Extensive experience (X+ years) in a similar role within the financial services industry, with a focus on Compliance Line 2 functions. In-depth knowledge of data protection laws and regulations, particularly GDPR and other relevant frameworks. Strong analytical skills and attention to detail, with the ability to interpret complex regulatory requirements and translate them into actionable strategies. Excellent communication and interpersonal skills, with the ability to effectively engage with stakeholders at all levels of the organization. Proven track record of driving compliance initiatives and implementing effective risk management practices.
Mar 29, 2024
Full time
Job Opportunity: Data Protection Officer with Compliance Line 2 Expertise Are you passionate about safeguarding data integrity and compliance within the dynamic realm of financial technology? Join our innovative fintech business as a Data Protection Officer (DPO) and play a pivotal role in ensuring the security and integrity of our data assets. About Us: My client are revolutionising the way financial services are delivered. With cutting-edge technology and a commitment to excellence, they empower individuals and businesses to thrive in the digital economy. As they continue to grow, we recognise the paramount importance of data protection and compliance, which is why they are seeking a dedicated professional to join our team. Role Overview: As a Data Protection Officer, you'll be responsible for overseeing all aspects of data protection and privacy compliance within their organisation. Your expertise in Compliance Line 2 will be instrumental in designing and implementing robust policies and procedures to ensure regulatory adherence and mitigate risks effectively. Key Responsibilities: Develop and maintain comprehensive data protection policies, protocols, and procedures in alignment with relevant regulations such as GDPR, CCPA, etc. Conduct regular audits and assessments to evaluate the effectiveness of existing data protection measures and identify areas for improvement. Provide guidance and support to internal stakeholders on data protection best practices and compliance requirements. Serve as the primary point of contact for data protection authorities, ensuring timely and transparent communication regarding data incidents and regulatory inquiries. Collaborate closely with cross-functional teams, including Legal, IT, and Compliance, to address data protection issues and drive continuous improvement initiatives. Stay abreast of emerging regulatory trends and industry developments to proactively adapt our data protection strategies and policies. Qualifications: Bachelor's degree in Law, Information Security, or related field; advanced certifications such as CIPP/E, CIPM, CIPT are highly desirable. Extensive experience (X+ years) in a similar role within the financial services industry, with a focus on Compliance Line 2 functions. In-depth knowledge of data protection laws and regulations, particularly GDPR and other relevant frameworks. Strong analytical skills and attention to detail, with the ability to interpret complex regulatory requirements and translate them into actionable strategies. Excellent communication and interpersonal skills, with the ability to effectively engage with stakeholders at all levels of the organization. Proven track record of driving compliance initiatives and implementing effective risk management practices.
Deputy Data Protection Officer Reading - Hybrid 2 days per week office based The Role: We are seeking a highly experienced Privacy Lawyer who is eager to embark on a new challenge and channel their passion for data protection in a dynamic and innovative environment. As a key member of this team the Data Protection and Privacy Officer (DDPO) will play a pivotal role in shaping and ensuring the organisation's compliance with UK data protection laws and regulations. Key Responsibilities: As the Data Protection and Privacy Officer, you will: Provide specialised, pragmatic, regulatory, and legal guidance to ensure the implementation of policies, processes, and controls aligned with UK data protection laws. Demonstrate a deep understanding and knowledge of UK data protection legislation and regulatory regimes, with a proven track record in the field (ISEB/CIPPE qualification is desirable). Offer compliance support for data protection, including conducting monitoring reviews and managing large customer data sets in a B2C environment, especially in the context of marketing activities. Apply Privacy by Design and Default principles, conduct Data Privacy Impact Assessments, and independently assess data breaches. Showcase strong communication and interpersonal skills, fostering relationships internally and externally, and effectively managing key stakeholders. Collaborate with various stakeholders, including Compliance, Legal, InfoSec, and other business units, to identify and implement legal and regulatory requirements related to data protection laws. Review and provide guidance on the development of compliance-related policies, procedures, processes, and controls, facilitating alignment with applicable laws and regulations. Support with Data Sharing Agreements (DSA) and contractual requirements. Collaborate with the Risk & Compliance team to provide comprehensive support to the business. Facilitate the identification, investigation, management, and resolution of compliance-related issues. Prepare relevant compliance reports to meet both internal and external regulatory requirements. Engage with front-line operational business teams to inform and advise on data protection obligations. Monitor compliance with UK-GDPR and other data protection laws, conducting internal data protection activities and compliance reviews. Ensure proper registration under the law and maintain an active article 30 register of processing activities, driving audit and data management processes. Manage data privacy breaches, identify root causes, implement mitigations, and monitor to prevent recurrence. Work closely with the business to embed data protection compliance into transformation programs. Oversee the subject access request process and individual rights, identifying and evaluating data processing activities. Key Requirements: Comfortable working under pressure, adaptable to ambiguity, and capable of managing multiple tasks simultaneously. Proven experience in the field of data protection, preferably with an ISEB/CIPPE qualification. Your subject matter experience and expertise will be crucial in your success, with a focus on compliance support and monitoring reviews. Previous experience in a B2C environment, particularly with large customer data sets and marketing. Strong understanding of UK data protection legislation and regulatory regimes. Demonstrable experience in Privacy by Design and Default, Data Privacy Impact Assessments, and managing data breaches. Excellent communication and interpersonal skills, with the ability to build and maintain relationships. Ability to work collaboratively, plan, organize, and prioritize activities to meet business objectives. If you are a passionate Data Protection professional and Privacy Lawyer seeking a new challenge and possess the skills and expertise outlined above. Apply now Project People is acting as an Employment Agency in relation to this vacancy.
Mar 28, 2024
Full time
Deputy Data Protection Officer Reading - Hybrid 2 days per week office based The Role: We are seeking a highly experienced Privacy Lawyer who is eager to embark on a new challenge and channel their passion for data protection in a dynamic and innovative environment. As a key member of this team the Data Protection and Privacy Officer (DDPO) will play a pivotal role in shaping and ensuring the organisation's compliance with UK data protection laws and regulations. Key Responsibilities: As the Data Protection and Privacy Officer, you will: Provide specialised, pragmatic, regulatory, and legal guidance to ensure the implementation of policies, processes, and controls aligned with UK data protection laws. Demonstrate a deep understanding and knowledge of UK data protection legislation and regulatory regimes, with a proven track record in the field (ISEB/CIPPE qualification is desirable). Offer compliance support for data protection, including conducting monitoring reviews and managing large customer data sets in a B2C environment, especially in the context of marketing activities. Apply Privacy by Design and Default principles, conduct Data Privacy Impact Assessments, and independently assess data breaches. Showcase strong communication and interpersonal skills, fostering relationships internally and externally, and effectively managing key stakeholders. Collaborate with various stakeholders, including Compliance, Legal, InfoSec, and other business units, to identify and implement legal and regulatory requirements related to data protection laws. Review and provide guidance on the development of compliance-related policies, procedures, processes, and controls, facilitating alignment with applicable laws and regulations. Support with Data Sharing Agreements (DSA) and contractual requirements. Collaborate with the Risk & Compliance team to provide comprehensive support to the business. Facilitate the identification, investigation, management, and resolution of compliance-related issues. Prepare relevant compliance reports to meet both internal and external regulatory requirements. Engage with front-line operational business teams to inform and advise on data protection obligations. Monitor compliance with UK-GDPR and other data protection laws, conducting internal data protection activities and compliance reviews. Ensure proper registration under the law and maintain an active article 30 register of processing activities, driving audit and data management processes. Manage data privacy breaches, identify root causes, implement mitigations, and monitor to prevent recurrence. Work closely with the business to embed data protection compliance into transformation programs. Oversee the subject access request process and individual rights, identifying and evaluating data processing activities. Key Requirements: Comfortable working under pressure, adaptable to ambiguity, and capable of managing multiple tasks simultaneously. Proven experience in the field of data protection, preferably with an ISEB/CIPPE qualification. Your subject matter experience and expertise will be crucial in your success, with a focus on compliance support and monitoring reviews. Previous experience in a B2C environment, particularly with large customer data sets and marketing. Strong understanding of UK data protection legislation and regulatory regimes. Demonstrable experience in Privacy by Design and Default, Data Privacy Impact Assessments, and managing data breaches. Excellent communication and interpersonal skills, with the ability to build and maintain relationships. Ability to work collaboratively, plan, organize, and prioritize activities to meet business objectives. If you are a passionate Data Protection professional and Privacy Lawyer seeking a new challenge and possess the skills and expertise outlined above. Apply now Project People is acting as an Employment Agency in relation to this vacancy.
Job title: DV Cleared Information Assurance and Cyber Risk Location: Farnborough Duration: 12 months Rate: Up to 850 per day My client is looking for a DV Cleared Information Assurance and Cyber Risk consultant to join their team. Responsibilities: Provide security subject matter expertise to the TSM Programme Manager, technical security advice to the TSM Programme and provide support to the clients Security Assurance Co-ordinator. Provide security subject matter expertise on the security implications of System Change Requests (SCRs). Maintain knowledge of current client security requirements and provide advice to the TSM Security Manager (SyM) on security requirements. Identify and assess the potential impact of amendments to the clients policy on the Programme. Maintain accreditation or Secure by Design (SbD) of TSM systems in accordance with the security requirements in contract with the client, including liaison as tasked by the TSM SyM with the client (e.g. CyDR) and other (e.g. NCSC) security stakeholders. Maintain RMADS (or similar SbD artefacts) and security risk assessments for TSM systems to support accreditation. Maintain formal certification of the TSMF facility in support of the accreditation / SbD of TSM systems. Maintain relevant Codes of Connection (CoCo) and ensure continued approval for such connections. Review and update security operating procedures, as tasked by the TSM SyM. Report on security for agreed meetings, for example regular Team Leaders' meetings or Monthly or Quarterly Progress Meetings as tasked by the TSM Programme Manager. On behalf of the TSM SyM manage the quarterly Security Working Groups (SWG) ensuring that calling notices, agendas, minutes etc. are produced and distributed within agreed timescales. Produce a draft Security Report prior to the Quarterly SWGs and presenting this report at the SWG; updating and issuing this report after the SWG. Manage assurance activities to be completed by the TSM Security Team. Support compliance checking activities to be completed by the TSM Security Team. Provide advice on the patching of TSM systems including monitoring MODCERTS and other sources of patching and vulnerability information. Develop and deliver security training to the TSM Programme. Required Skills: Experience in offering advice on Security requirements. 5-10 years Cyber Risk experience. Understanding codes of Connection. Understanding of Secure by Design and how this is replacing formal accreditation of client systems. Comfortable working in a multi-disciplinary team, and able to work with others. Able to manage own tasks and time liaising with the TSM System Security Officer to agree tasks to be delivered and time to be worked on programme. Good communication skills. If this is the role for you please submit your CV at your earliest convenience. If you have not been contacted within 2 weeks of application please consider you have not been successful for this opportunity.
Mar 28, 2024
Contractor
Job title: DV Cleared Information Assurance and Cyber Risk Location: Farnborough Duration: 12 months Rate: Up to 850 per day My client is looking for a DV Cleared Information Assurance and Cyber Risk consultant to join their team. Responsibilities: Provide security subject matter expertise to the TSM Programme Manager, technical security advice to the TSM Programme and provide support to the clients Security Assurance Co-ordinator. Provide security subject matter expertise on the security implications of System Change Requests (SCRs). Maintain knowledge of current client security requirements and provide advice to the TSM Security Manager (SyM) on security requirements. Identify and assess the potential impact of amendments to the clients policy on the Programme. Maintain accreditation or Secure by Design (SbD) of TSM systems in accordance with the security requirements in contract with the client, including liaison as tasked by the TSM SyM with the client (e.g. CyDR) and other (e.g. NCSC) security stakeholders. Maintain RMADS (or similar SbD artefacts) and security risk assessments for TSM systems to support accreditation. Maintain formal certification of the TSMF facility in support of the accreditation / SbD of TSM systems. Maintain relevant Codes of Connection (CoCo) and ensure continued approval for such connections. Review and update security operating procedures, as tasked by the TSM SyM. Report on security for agreed meetings, for example regular Team Leaders' meetings or Monthly or Quarterly Progress Meetings as tasked by the TSM Programme Manager. On behalf of the TSM SyM manage the quarterly Security Working Groups (SWG) ensuring that calling notices, agendas, minutes etc. are produced and distributed within agreed timescales. Produce a draft Security Report prior to the Quarterly SWGs and presenting this report at the SWG; updating and issuing this report after the SWG. Manage assurance activities to be completed by the TSM Security Team. Support compliance checking activities to be completed by the TSM Security Team. Provide advice on the patching of TSM systems including monitoring MODCERTS and other sources of patching and vulnerability information. Develop and deliver security training to the TSM Programme. Required Skills: Experience in offering advice on Security requirements. 5-10 years Cyber Risk experience. Understanding codes of Connection. Understanding of Secure by Design and how this is replacing formal accreditation of client systems. Comfortable working in a multi-disciplinary team, and able to work with others. Able to manage own tasks and time liaising with the TSM System Security Officer to agree tasks to be delivered and time to be worked on programme. Good communication skills. If this is the role for you please submit your CV at your earliest convenience. If you have not been contacted within 2 weeks of application please consider you have not been successful for this opportunity.
Your new company This Facilities Management business is in a great position to add another IT Security Officer to their team. You'll be based in their head office North of Salisbury, so you will require your own transport, but there is free parking available. You will be working for an organisation who provide services to the MOD and will be able to work on a hybrid basis, which will usually be 2 days a week on site just outside of Salisbury. Your new role You will be jointly responsible for the companies IT Security GRC, with a strong focus on ISO:27001 and ensuring that standards are adhered to. Some of the key responsibilities of the role will be: Fulfilling the role of IT Security Officer as defined in the Risk Management Accreditation Document Set (RMADS) Maintain and update the ISO27001 accredited Information Security Management System (ISMS) and ensure staff are aware of its content. Liaising with the IT Management Team to develop and manage IT security processes, best practice, and documentation, implementing policy and providing direction within your area of competency. Acting as company subject-matter expert for all security-related matters and liaising with appropriate MoD staff Be familiar with and ensure compliance with all our contractual responsibilities as an Industry Partner to the MoD. What you'll need to succeed You'll need a strong experience within Information Security and GRC, with the ability to gain UK Security Clearance. You will also need the following: The ability to be on site close to Salisbury 2/3 times a week. 3 years + experience with GRC, most preferably with an ISO background. An ISO:27001 certificate would be preferable. Experience engaging with different levels of stakeholders, and confidence to ensure best practices are being adhered to. The ability to manage multiple projects simultaneously. The ability to work alone and as part of a team. Experience with MOD security standards would be advantageous. What you'll get in return With a salary of up to £50,000, and a generous benefits package which includes access to industry-leading training/certifications, good pension, free parking, and you'll work alongside some highly experienced and talented colleagues to share knowledge (which is actively encouraged). There's also a great opportunity to accumulate/stack holiday through their annual leave policy. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now.If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion about your career. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at hays.co.uk
Mar 28, 2024
Full time
Your new company This Facilities Management business is in a great position to add another IT Security Officer to their team. You'll be based in their head office North of Salisbury, so you will require your own transport, but there is free parking available. You will be working for an organisation who provide services to the MOD and will be able to work on a hybrid basis, which will usually be 2 days a week on site just outside of Salisbury. Your new role You will be jointly responsible for the companies IT Security GRC, with a strong focus on ISO:27001 and ensuring that standards are adhered to. Some of the key responsibilities of the role will be: Fulfilling the role of IT Security Officer as defined in the Risk Management Accreditation Document Set (RMADS) Maintain and update the ISO27001 accredited Information Security Management System (ISMS) and ensure staff are aware of its content. Liaising with the IT Management Team to develop and manage IT security processes, best practice, and documentation, implementing policy and providing direction within your area of competency. Acting as company subject-matter expert for all security-related matters and liaising with appropriate MoD staff Be familiar with and ensure compliance with all our contractual responsibilities as an Industry Partner to the MoD. What you'll need to succeed You'll need a strong experience within Information Security and GRC, with the ability to gain UK Security Clearance. You will also need the following: The ability to be on site close to Salisbury 2/3 times a week. 3 years + experience with GRC, most preferably with an ISO background. An ISO:27001 certificate would be preferable. Experience engaging with different levels of stakeholders, and confidence to ensure best practices are being adhered to. The ability to manage multiple projects simultaneously. The ability to work alone and as part of a team. Experience with MOD security standards would be advantageous. What you'll get in return With a salary of up to £50,000, and a generous benefits package which includes access to industry-leading training/certifications, good pension, free parking, and you'll work alongside some highly experienced and talented colleagues to share knowledge (which is actively encouraged). There's also a great opportunity to accumulate/stack holiday through their annual leave policy. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now.If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion about your career. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at hays.co.uk
Information Assurance Officer - 12 Month FTC - Birmingham - £60k - Legal ISO27001 Cyber Essentials Compliance Risk Assessments Documentation Policies Salary: £60,000 Location: Birmingham Are you an Information Assurance professional, looking for a new challenge in your career? Do you have demonstrable experience of working with Information Security Management Systems and Security Programmes? Have you previously worked in line with ISO27001:2022 standards? Interested in working for an innovative and award-winning company who support the development of your career? If so, I have a fantastic opportunity for you! I'm looking to speak with individuals who are comfortable producing and developing policies and documents to enforce security requirements. You will have the ability to facilitate the requirements for external audits. You must be comfortable liaising with both internal and external stakeholders and capable of driving compliance capabilities. Key Responsibilities Assist with the design, development and operation of the company's Integrated Information Security Management System and Security Programme in line with ISO27001:22 Work with your immediate team and the wider business on compliance projects Produce policies and documentation to apply security requirements Collaborate with internal and external stakeholders to drive compliance capabilities Carry out the necessary work to help achieve Cyber Essentials Plus accreditation Maintain, review and update security policies, procedures and guidelines Support the organisation with complex security queries and risk assessments The Ideal Candidate ISO27001 Implementer certified CISM, CISA, CRISC certified or another relevant professional certification Can work well under pressure and prioritise workloads to meet deadlines Capable of working without supervision Excellent attention to detail with a logical and methodical approach to tasks Strong written and verbal communication skills Desired experience with: ISO27001 Cyber Essentials Plus UK GDPR processes Risk Management Accreditation demands Defence in depth If you would like to be considered for this role, apply below or get in contact with Andrew Rose for further details. Xpertise are acting as an employment agency and business
Mar 28, 2024
Full time
Information Assurance Officer - 12 Month FTC - Birmingham - £60k - Legal ISO27001 Cyber Essentials Compliance Risk Assessments Documentation Policies Salary: £60,000 Location: Birmingham Are you an Information Assurance professional, looking for a new challenge in your career? Do you have demonstrable experience of working with Information Security Management Systems and Security Programmes? Have you previously worked in line with ISO27001:2022 standards? Interested in working for an innovative and award-winning company who support the development of your career? If so, I have a fantastic opportunity for you! I'm looking to speak with individuals who are comfortable producing and developing policies and documents to enforce security requirements. You will have the ability to facilitate the requirements for external audits. You must be comfortable liaising with both internal and external stakeholders and capable of driving compliance capabilities. Key Responsibilities Assist with the design, development and operation of the company's Integrated Information Security Management System and Security Programme in line with ISO27001:22 Work with your immediate team and the wider business on compliance projects Produce policies and documentation to apply security requirements Collaborate with internal and external stakeholders to drive compliance capabilities Carry out the necessary work to help achieve Cyber Essentials Plus accreditation Maintain, review and update security policies, procedures and guidelines Support the organisation with complex security queries and risk assessments The Ideal Candidate ISO27001 Implementer certified CISM, CISA, CRISC certified or another relevant professional certification Can work well under pressure and prioritise workloads to meet deadlines Capable of working without supervision Excellent attention to detail with a logical and methodical approach to tasks Strong written and verbal communication skills Desired experience with: ISO27001 Cyber Essentials Plus UK GDPR processes Risk Management Accreditation demands Defence in depth If you would like to be considered for this role, apply below or get in contact with Andrew Rose for further details. Xpertise are acting as an employment agency and business
Are you ready to take on an exciting and dynamic role where no two days are the same? I am looking for a driven individual to join this Energy from waste business in supporting a variety of projects, with a primary focus on communications, to drive the delivery of initiatives within this organisation. As part of this team, you'll play a vital role in contributing to their strategic aims through innovation, data-driven decision-making, and effective project management. Key Responsibilities: Project Management: Establish and manage the scope of small to medium-sized projects, ensuring successful delivery from inception to completion. This involves effectively managing stakeholder expectations and utilising project management principles to drive effective change activity. Communication Support: Create engaging content and communications materials, including project success stories, community engagement updates, and briefings for politicians and local community groups. Maintain project websites and assist in the production of reports and other documents. Procurement and Governance: Administer project procurement exercises, ensuring compliance with standing orders and statutory timescales. Establish governance for internal meetings and support the production of project communications materials. Innovation and Problem-Solving: Contribute to this organisation's strategic aims through research, data analysis, and innovative problem-solving. Relationship Building: Build and maintain effective working relationships with colleagues, partner organisations, external stakeholders, and opinion formers. Provide strategic advice and influence decision-making at board level, senior officer, and elected member levels. About You: Project Management Skills: Experience in planning and scheduling project activities, with the ability to influence and negotiate change requirements with diverse stakeholders. Analytical Abilities: Strong analytical skills and the ability to interpret a range of information and data to make data-driven decisions. Communication Skills: Excellent oral and written communication skills, with the ability to produce engaging content for various purposes, including reporting and information sharing. Innovative Thinking: Demonstrated ability to be innovative in problem-solving and approach to work, utilizing IT software to achieve role objectives. Self-Starter: Proven ability to work independently, prioritise activities, and achieve optimal outcomes for the business. Experience: Previous experience in supporting project delivery in communications, change projects, and risk management. Familiarity with local government landscape is desirable. Join this team: If you're a proactive self-starter with a passion for driving positive change and supporting project delivery in a dynamic environment, I want to hear from you! If this role is for you then please send your CV at the earliest opportunity.
Mar 28, 2024
Full time
Are you ready to take on an exciting and dynamic role where no two days are the same? I am looking for a driven individual to join this Energy from waste business in supporting a variety of projects, with a primary focus on communications, to drive the delivery of initiatives within this organisation. As part of this team, you'll play a vital role in contributing to their strategic aims through innovation, data-driven decision-making, and effective project management. Key Responsibilities: Project Management: Establish and manage the scope of small to medium-sized projects, ensuring successful delivery from inception to completion. This involves effectively managing stakeholder expectations and utilising project management principles to drive effective change activity. Communication Support: Create engaging content and communications materials, including project success stories, community engagement updates, and briefings for politicians and local community groups. Maintain project websites and assist in the production of reports and other documents. Procurement and Governance: Administer project procurement exercises, ensuring compliance with standing orders and statutory timescales. Establish governance for internal meetings and support the production of project communications materials. Innovation and Problem-Solving: Contribute to this organisation's strategic aims through research, data analysis, and innovative problem-solving. Relationship Building: Build and maintain effective working relationships with colleagues, partner organisations, external stakeholders, and opinion formers. Provide strategic advice and influence decision-making at board level, senior officer, and elected member levels. About You: Project Management Skills: Experience in planning and scheduling project activities, with the ability to influence and negotiate change requirements with diverse stakeholders. Analytical Abilities: Strong analytical skills and the ability to interpret a range of information and data to make data-driven decisions. Communication Skills: Excellent oral and written communication skills, with the ability to produce engaging content for various purposes, including reporting and information sharing. Innovative Thinking: Demonstrated ability to be innovative in problem-solving and approach to work, utilizing IT software to achieve role objectives. Self-Starter: Proven ability to work independently, prioritise activities, and achieve optimal outcomes for the business. Experience: Previous experience in supporting project delivery in communications, change projects, and risk management. Familiarity with local government landscape is desirable. Join this team: If you're a proactive self-starter with a passion for driving positive change and supporting project delivery in a dynamic environment, I want to hear from you! If this role is for you then please send your CV at the earliest opportunity.
Information Assurance Officer - 12 Month FTC - Birmingham - £60k - Legal ISO27001 Cyber Essentials Compliance Risk Assessments Documentation Policies Salary: £60,000 Location: Birmingham Are you an Information Assurance professional, looking for a new challenge in your career? Do you have demonstrable experience of working with Information Security Management Systems and Security Programmes? Have you previously worked in line with ISO27001:2022 standards? Interested in working for an innovative and award-winning company who support the development of your career? If so, I have a fantastic opportunity for you! I'm looking to speak with individuals who are comfortable producing and developing policies and documents to enforce security requirements. You will have the ability to facilitate the requirements for external audits. You must be comfortable liaising with both internal and external stakeholders and capable of driving compliance capabilities. Key Responsibilities Assist with the design, development and operation of the company's Integrated Information Security Management System and Security Programme in line with ISO27001:22 Work with your immediate team and the wider business on compliance projects Produce policies and documentation to apply security requirements Collaborate with internal and external stakeholders to drive compliance capabilities Carry out the necessary work to help achieve Cyber Essentials Plus accreditation Maintain, review and update security policies, procedures and guidelines Support the organisation with complex security queries and risk assessments The Ideal Candidate ISO27001 Implementer certified CISM, CISA, CRISC certified or another relevant professional certification Can work well under pressure and prioritise workloads to meet deadlines Capable of working without supervision Excellent attention to detail with a logical and methodical approach to tasks Strong written and verbal communication skills Desired experience with: ISO27001 Cyber Essentials Plus UK GDPR processes Risk Management Accreditation demands Defence in depth If you would like to be considered for this role, apply below or get in contact with Andrew Rose for further details. Xpertise are acting as an employment agency and business
Mar 28, 2024
Full time
Information Assurance Officer - 12 Month FTC - Birmingham - £60k - Legal ISO27001 Cyber Essentials Compliance Risk Assessments Documentation Policies Salary: £60,000 Location: Birmingham Are you an Information Assurance professional, looking for a new challenge in your career? Do you have demonstrable experience of working with Information Security Management Systems and Security Programmes? Have you previously worked in line with ISO27001:2022 standards? Interested in working for an innovative and award-winning company who support the development of your career? If so, I have a fantastic opportunity for you! I'm looking to speak with individuals who are comfortable producing and developing policies and documents to enforce security requirements. You will have the ability to facilitate the requirements for external audits. You must be comfortable liaising with both internal and external stakeholders and capable of driving compliance capabilities. Key Responsibilities Assist with the design, development and operation of the company's Integrated Information Security Management System and Security Programme in line with ISO27001:22 Work with your immediate team and the wider business on compliance projects Produce policies and documentation to apply security requirements Collaborate with internal and external stakeholders to drive compliance capabilities Carry out the necessary work to help achieve Cyber Essentials Plus accreditation Maintain, review and update security policies, procedures and guidelines Support the organisation with complex security queries and risk assessments The Ideal Candidate ISO27001 Implementer certified CISM, CISA, CRISC certified or another relevant professional certification Can work well under pressure and prioritise workloads to meet deadlines Capable of working without supervision Excellent attention to detail with a logical and methodical approach to tasks Strong written and verbal communication skills Desired experience with: ISO27001 Cyber Essentials Plus UK GDPR processes Risk Management Accreditation demands Defence in depth If you would like to be considered for this role, apply below or get in contact with Andrew Rose for further details. Xpertise are acting as an employment agency and business
Regional Information Security Officer - Hybrid (Central London) - £95k -125k + Annual Bonus & Benefits Robert Half have partnered with a global powerhouse in the Media, advertising, broadcasting & entertainment industry. Due to growth and expansion of their global Info/ Cyber practice they're now looking for a UK based Regional Information Security Officer. The Role The successful candidate will be the UK's Lead security & risk professional, charged with assisting their local team and aligned with the Corporate Security function to assist in the maturation the security posture. Reporting to the Business Information Security Officer (BISO), this role will be focused on the governance, implementation and compliance of the Corporate Information Security policies, standards, procedures and guidelines to prevent the unauthorized use, release, modification or destruction of data/systems, specific to their Practice Area/Network. The RISO will also be expected to assist with internal security consultancy to support strategy and identify information Security related risks where possible. Responsibilities Build and maintain global relationships with Practice Area/Network business units and stakeholders to support local security activities with focus on continuous improvement and program maturation. Work with BISO and Corporate Security to deliver administrative and technical controls, in line with organizational policies, standards, contracts, and/or regulatory obligations. Support strategic and tactical alignment of corporate technology to overall security to business objectives for all divisions within region. Assist in responding to client requirements such as RFP/RFI, audits, security questionnaires, contract negotiation and client meetings as relates to security where appropriate. Collaborate with the Practice Area/Network IT departments to identify and address internal/external security risks management and governance issues, developing treatment plans to address risk or reduce the risk to an acceptable level while aligning with the Corporate Risk Management Framework and practices. Participate in implementation and management of Practice Area/Network and Corporate platforms, e.g. endpoint protection, encryption, SIEM, CASB, perimeter controls Assist with regular testing and applicable remediation efforts of critical infrastructure, high-risk applications, and processes. Work with Corporate Security to supplement the global Information Security Awareness training curriculum, with Practice Area/Network specific content, facilitating cyber security awareness activities and security awareness concepts locally to be suitable for the business. Skills & Experiences Minimum 4 years of experience in IT, Information Security, IT Audit or related area Familiarity with Information Security industry standards/best practices and relevant regulations (e.g., ISO27001, PCI DSS, HIPAA, GLBA, FISMA, SOX, NIST, CobiT) Industry recognized certifications (CISA, CISSP, CISM) preferred. Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate security and risk-related concepts to technical and nontechnical audiences Ability to cultivate relationships and act as a consultancy to varied stakeholders including cross-functional / peer relationships with diverse, global teams Proven track record of managing security in operations programs, strategic services, and projects to minimize risk exposure to the business. Possess a technical skill relevant to Information Security Strong problem solving and analytical skills We have a state-of-the-art office in Central London and try and get together as a team a couple of times a week in person. £95k-125k + 15-25% Bonus & Excellent Benefits! Robert Half Ltd acts as an employment business for temporary positions and an employment agency for permanent positions. Robert Half is committed to equal opportunity and diversity. Suitable candidates with equivalent qualifications and more or less experience can apply. Rates of pay and salary ranges are dependent upon your experience, qualifications and training. If you wish to apply, please read our Privacy Notice describing how we may process, disclose and store your personal data: gb/en/privacy-notice Security alert: scammers are currently targeting jobseekers. Robert Half do not ask candidates for a fee or request candidates to send applications through instant messaging services such as WhatsApp or Telegram. Learn how to protect yourself by visiting our website: gb/en/how-spot-recruitment-scams-and-protect-yourself
Mar 28, 2024
Full time
Regional Information Security Officer - Hybrid (Central London) - £95k -125k + Annual Bonus & Benefits Robert Half have partnered with a global powerhouse in the Media, advertising, broadcasting & entertainment industry. Due to growth and expansion of their global Info/ Cyber practice they're now looking for a UK based Regional Information Security Officer. The Role The successful candidate will be the UK's Lead security & risk professional, charged with assisting their local team and aligned with the Corporate Security function to assist in the maturation the security posture. Reporting to the Business Information Security Officer (BISO), this role will be focused on the governance, implementation and compliance of the Corporate Information Security policies, standards, procedures and guidelines to prevent the unauthorized use, release, modification or destruction of data/systems, specific to their Practice Area/Network. The RISO will also be expected to assist with internal security consultancy to support strategy and identify information Security related risks where possible. Responsibilities Build and maintain global relationships with Practice Area/Network business units and stakeholders to support local security activities with focus on continuous improvement and program maturation. Work with BISO and Corporate Security to deliver administrative and technical controls, in line with organizational policies, standards, contracts, and/or regulatory obligations. Support strategic and tactical alignment of corporate technology to overall security to business objectives for all divisions within region. Assist in responding to client requirements such as RFP/RFI, audits, security questionnaires, contract negotiation and client meetings as relates to security where appropriate. Collaborate with the Practice Area/Network IT departments to identify and address internal/external security risks management and governance issues, developing treatment plans to address risk or reduce the risk to an acceptable level while aligning with the Corporate Risk Management Framework and practices. Participate in implementation and management of Practice Area/Network and Corporate platforms, e.g. endpoint protection, encryption, SIEM, CASB, perimeter controls Assist with regular testing and applicable remediation efforts of critical infrastructure, high-risk applications, and processes. Work with Corporate Security to supplement the global Information Security Awareness training curriculum, with Practice Area/Network specific content, facilitating cyber security awareness activities and security awareness concepts locally to be suitable for the business. Skills & Experiences Minimum 4 years of experience in IT, Information Security, IT Audit or related area Familiarity with Information Security industry standards/best practices and relevant regulations (e.g., ISO27001, PCI DSS, HIPAA, GLBA, FISMA, SOX, NIST, CobiT) Industry recognized certifications (CISA, CISSP, CISM) preferred. Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate security and risk-related concepts to technical and nontechnical audiences Ability to cultivate relationships and act as a consultancy to varied stakeholders including cross-functional / peer relationships with diverse, global teams Proven track record of managing security in operations programs, strategic services, and projects to minimize risk exposure to the business. Possess a technical skill relevant to Information Security Strong problem solving and analytical skills We have a state-of-the-art office in Central London and try and get together as a team a couple of times a week in person. £95k-125k + 15-25% Bonus & Excellent Benefits! Robert Half Ltd acts as an employment business for temporary positions and an employment agency for permanent positions. Robert Half is committed to equal opportunity and diversity. Suitable candidates with equivalent qualifications and more or less experience can apply. Rates of pay and salary ranges are dependent upon your experience, qualifications and training. If you wish to apply, please read our Privacy Notice describing how we may process, disclose and store your personal data: gb/en/privacy-notice Security alert: scammers are currently targeting jobseekers. Robert Half do not ask candidates for a fee or request candidates to send applications through instant messaging services such as WhatsApp or Telegram. Learn how to protect yourself by visiting our website: gb/en/how-spot-recruitment-scams-and-protect-yourself
Information Assurance Officer - 12 Month FTC - Birmingham - £60k - Legal ISO27001 | Cyber Essentials | Compliance | Risk Assessments | Documentation | Policies Salary: £60,000 Location: Birmingham Are you an Information Assurance professional, looking for a new challenge in your career? Do you have demonstrable experience of working with Information Security Management Systems and Security Programmes? Have you previously worked in line with ISO27001:2022 standards? Interested in working for an innovative and award-winning company who support the development of your career? If so, I have a fantastic opportunity for you! I'm looking to speak with individuals who are comfortable producing and developing policies and documents to enforce security requirements. You will have the ability to facilitate the requirements for external audits. You must be comfortable liaising with both internal and external stakeholders and capable of driving compliance capabilities. Key Responsibilities Assist with the design, development and operation of the company's Integrated Information Security Management System and Security Programme in line with ISO27001:22 Work with your immediate team and the wider business on compliance projects Produce policies and documentation to apply security requirements Collaborate with internal and external stakeholders to drive compliance capabilities Carry out the necessary work to help achieve Cyber Essentials Plus accreditation Maintain, review and update security policies, procedures and guidelines Support the organisation with complex security queries and risk assessments The Ideal Candidate ISO27001 Implementer certified CISM, CISA, CRISC certified or another relevant professional certification Can work well under pressure and prioritise workloads to meet deadlines Capable of working without supervision Excellent attention to detail with a logical and methodical approach to tasks Strong written and verbal communication skills Desired experience with: ISO27001 Cyber Essentials Plus UK GDPR processes Risk Management Accreditation demands Defence in depth If you would like to be considered for this role, apply below or get in contact with Andrew Rose for further details. Xpertise are acting as an employment agency and business
Mar 28, 2024
Information Assurance Officer - 12 Month FTC - Birmingham - £60k - Legal ISO27001 | Cyber Essentials | Compliance | Risk Assessments | Documentation | Policies Salary: £60,000 Location: Birmingham Are you an Information Assurance professional, looking for a new challenge in your career? Do you have demonstrable experience of working with Information Security Management Systems and Security Programmes? Have you previously worked in line with ISO27001:2022 standards? Interested in working for an innovative and award-winning company who support the development of your career? If so, I have a fantastic opportunity for you! I'm looking to speak with individuals who are comfortable producing and developing policies and documents to enforce security requirements. You will have the ability to facilitate the requirements for external audits. You must be comfortable liaising with both internal and external stakeholders and capable of driving compliance capabilities. Key Responsibilities Assist with the design, development and operation of the company's Integrated Information Security Management System and Security Programme in line with ISO27001:22 Work with your immediate team and the wider business on compliance projects Produce policies and documentation to apply security requirements Collaborate with internal and external stakeholders to drive compliance capabilities Carry out the necessary work to help achieve Cyber Essentials Plus accreditation Maintain, review and update security policies, procedures and guidelines Support the organisation with complex security queries and risk assessments The Ideal Candidate ISO27001 Implementer certified CISM, CISA, CRISC certified or another relevant professional certification Can work well under pressure and prioritise workloads to meet deadlines Capable of working without supervision Excellent attention to detail with a logical and methodical approach to tasks Strong written and verbal communication skills Desired experience with: ISO27001 Cyber Essentials Plus UK GDPR processes Risk Management Accreditation demands Defence in depth If you would like to be considered for this role, apply below or get in contact with Andrew Rose for further details. Xpertise are acting as an employment agency and business
Job Title: Senior/Mid-Level Penetration Tester (OSCP Qualified) Location: United Kingdom (with options for remote work and client site visits) About the Client: Our client specialises in demystifying the complexities of governance, risk, and compliance, offering real-world, practical solutions to a broad spectrum of related challenges. They are committed to working closely with their clients to develop the most effective and sustainable strategies, ensuring these solutions integrate seamlessly with the day-to-day operations of the business with minimal disruption. Their expertise encompasses: Information Security Consultancy: Providing tailored guidance to strengthen your information security posture. Penetration Testing: Conduct comprehensive assessments to identify vulnerabilities and enhance your cyber defenses. Data Privacy Consultancy: Offering expert advice to ensure your data handling practices are compliant and secure. Outsourced DPO Services: Delivering professional Data Protection Officer services to meet regulatory requirements without the need for in-house expertise. Through these services, our client aims to streamline your approach to managing and mitigating risks, ensuring compliance with relevant standards and regulations while fostering a secure and resilient organisational environment. Position Overview: On behalf of our esteemed client, we are in search of seasoned and adept Senior and Mid-Level Penetration Testers with a deep-rooted enthusiasm for cybersecurity. The ideal candidates will be professionals certified in OSCP, boasting a substantial record in penetration testing, web application, API testing, and direct client interactions. This role entails performing in-depth security assessments, pinpointing vulnerabilities, and proposing practical recommendations to improve our clients' security stance. Responsibilities: Execute penetration tests across web applications, APIs, and networks to uncover vulnerabilities and security weaknesses. Formulate and implement testing strategies for thorough security assessments. Directly collaborate with clients to define engagement scopes, including understanding their systems, pinpointing testing requirements, and managing expectations. Perform on-site security assessments and consultations at client locations as required. Facilitate Q&A sessions, mop-up sessions, and present detailed final reports to clients, highlighting findings, implications, and remediation recommendations. Prepare comprehensive reports on identified vulnerabilities, providing concise and actionable advice for clients to mitigate security issues. Keep up-to-date with the latest cybersecurity threats, trends, and testing methodologies to enhance the quality of services provided. Requirements: Must be based in the United Kingdom. Possession of OSCP certification is essential. Senior roles require at least 3 years of experience in penetration testing or a similar technical lead capacity. Mid-Level roles require a minimum of 1 year of penetration testing experience along with OSCP certification. Profound experience in testing web applications and APIs. Proven expertise in client-facing roles, including engagement scoping, site visits, leading discussions, and delivering presentations. Exceptional analytical and report writing skills, with prior experience in completing detailed vulnerability reports. Strong communication and interpersonal abilities, capable of explaining intricate security matters to a non-technical audience. A steadfast commitment to ethical hacking practices, adhering to legal and ethical guidelines in penetration testing. Benefits: Competitive salary and comprehensive benefits package. Professional development and certification opportunities. Flexible working arrangements, including the possibility of remote work. A dynamic and supportive working atmosphere among a team of dedicated cybersecurity professionals. Application Process: Candidates interested in applying for this role are invited to submit their CV and a cover letter outlining their experiences, qualifications, and reasons for being the perfect fit for the position to Musa at . Please include examples of previous penetration testing projects, particularly those involving direct client engagement and report writing.
Mar 28, 2024
Full time
Job Title: Senior/Mid-Level Penetration Tester (OSCP Qualified) Location: United Kingdom (with options for remote work and client site visits) About the Client: Our client specialises in demystifying the complexities of governance, risk, and compliance, offering real-world, practical solutions to a broad spectrum of related challenges. They are committed to working closely with their clients to develop the most effective and sustainable strategies, ensuring these solutions integrate seamlessly with the day-to-day operations of the business with minimal disruption. Their expertise encompasses: Information Security Consultancy: Providing tailored guidance to strengthen your information security posture. Penetration Testing: Conduct comprehensive assessments to identify vulnerabilities and enhance your cyber defenses. Data Privacy Consultancy: Offering expert advice to ensure your data handling practices are compliant and secure. Outsourced DPO Services: Delivering professional Data Protection Officer services to meet regulatory requirements without the need for in-house expertise. Through these services, our client aims to streamline your approach to managing and mitigating risks, ensuring compliance with relevant standards and regulations while fostering a secure and resilient organisational environment. Position Overview: On behalf of our esteemed client, we are in search of seasoned and adept Senior and Mid-Level Penetration Testers with a deep-rooted enthusiasm for cybersecurity. The ideal candidates will be professionals certified in OSCP, boasting a substantial record in penetration testing, web application, API testing, and direct client interactions. This role entails performing in-depth security assessments, pinpointing vulnerabilities, and proposing practical recommendations to improve our clients' security stance. Responsibilities: Execute penetration tests across web applications, APIs, and networks to uncover vulnerabilities and security weaknesses. Formulate and implement testing strategies for thorough security assessments. Directly collaborate with clients to define engagement scopes, including understanding their systems, pinpointing testing requirements, and managing expectations. Perform on-site security assessments and consultations at client locations as required. Facilitate Q&A sessions, mop-up sessions, and present detailed final reports to clients, highlighting findings, implications, and remediation recommendations. Prepare comprehensive reports on identified vulnerabilities, providing concise and actionable advice for clients to mitigate security issues. Keep up-to-date with the latest cybersecurity threats, trends, and testing methodologies to enhance the quality of services provided. Requirements: Must be based in the United Kingdom. Possession of OSCP certification is essential. Senior roles require at least 3 years of experience in penetration testing or a similar technical lead capacity. Mid-Level roles require a minimum of 1 year of penetration testing experience along with OSCP certification. Profound experience in testing web applications and APIs. Proven expertise in client-facing roles, including engagement scoping, site visits, leading discussions, and delivering presentations. Exceptional analytical and report writing skills, with prior experience in completing detailed vulnerability reports. Strong communication and interpersonal abilities, capable of explaining intricate security matters to a non-technical audience. A steadfast commitment to ethical hacking practices, adhering to legal and ethical guidelines in penetration testing. Benefits: Competitive salary and comprehensive benefits package. Professional development and certification opportunities. Flexible working arrangements, including the possibility of remote work. A dynamic and supportive working atmosphere among a team of dedicated cybersecurity professionals. Application Process: Candidates interested in applying for this role are invited to submit their CV and a cover letter outlining their experiences, qualifications, and reasons for being the perfect fit for the position to Musa at . Please include examples of previous penetration testing projects, particularly those involving direct client engagement and report writing.
Trade Surveillance Officer City of London / Hybrid Permanent Up to £75,000 cer Financial are working alongside a financial advisor who are based in the City of London. They are seeking a Trade Surveillance Officer to work with them on a permanent basis. The Responsibilities of a Trade Surveillance Officer Will Include: Continuous monitoring of market activity in real-time through internal systems, including the 'Activity Monitor,' to track all trades, orders, and messaging volumes. Conduct timely analysis of alerts escalated by the Scila surveillance tool to identify and prevent market or firm-damaging misconduct. Perform ad-hoc reviews and screening of trading activity, analysing complex situations, identifying high-risk behaviours, and efficiently resolving issues. Analyse trading strategies and implement enhanced monitoring processes. Utilise the firm's internal visualisation tools effectively, including Microscope (orderbook ladders, graphs), Risk Monitor (orderbook ladders, star of day positions, P&L), Activity Monitor (orders, trades, messaging volumes), Matching Trades Analyser (identifying collusion/wash trading), and Insider Dealing Event Tracker. Document and provide evidence of surveillance analysis within Compliance Surveillance Actions folders to facilitate decision-making regarding alert closure or identification of suspicious patterns. Analyse and prepare surveillance issues for recommendation and subsequent escalation to the Head of Compliance. Collaborate with Technology teams and/or vendors to develop new tools and surveillance controls. Oversee inquiries from external entities, including clearing members, and assume a leadership role in addressing regulator and exchange inquiries. Develop expertise required to contribute to the firm's market surveillance-related workstreams. Calibration of new and existing Scila surveillance alert parameters for testing before implementation and document the testing outcomes. Develop specific Scila surveillance alerts tailored to different asset classes. Assume responsibility for executing new alerts on historical trading data to identify potential patterns of market abuse. Take ownership of allocated surveillance projects, collaborating with Compliance and broader operational teams as necessary. Generate meaningful Management Information from Scila and other sources on a weekly basis. Participate in the preparation of the Compliance Board Pack. Maintain the Risk Register encompassing all surveillance matters and the Enhanced Monitoring List. Knowledge of algorithms is desirable, including participation in algorithm demos and understanding trading strategies. Comprehend algorithmic trading strategies and ascertain their compliance with exchange rules. Possess a sold understanding of exchange regulations. Conduct surveillance on market making, liquidity provision, and volume creation strategies, cross-referencing exchange-completed forms, and databases to identify traders or groups participating and to detect potential instances of collusive behaviour or market abuse. Evaluate personal account dealing confirmations in comparison to traders' trading account activities. The Successful Trade Surveillance Officer Will Have: Compile and evaluate documentation for internal investigations. Address and retrieve data for regulatory inquiries from entities such as the UK Financial Conduct Authority (FCA) or other pertinent regulatory bodies. Offer input on STOR recommendations regarding surveillance information for assessment. Assist in the preparation of STORS for submission to the FCA. Collaborate with Business Units, Legal, and Compliance Coverage teams to respond to regulatory inquiries as required.
Mar 28, 2024
Full time
Trade Surveillance Officer City of London / Hybrid Permanent Up to £75,000 cer Financial are working alongside a financial advisor who are based in the City of London. They are seeking a Trade Surveillance Officer to work with them on a permanent basis. The Responsibilities of a Trade Surveillance Officer Will Include: Continuous monitoring of market activity in real-time through internal systems, including the 'Activity Monitor,' to track all trades, orders, and messaging volumes. Conduct timely analysis of alerts escalated by the Scila surveillance tool to identify and prevent market or firm-damaging misconduct. Perform ad-hoc reviews and screening of trading activity, analysing complex situations, identifying high-risk behaviours, and efficiently resolving issues. Analyse trading strategies and implement enhanced monitoring processes. Utilise the firm's internal visualisation tools effectively, including Microscope (orderbook ladders, graphs), Risk Monitor (orderbook ladders, star of day positions, P&L), Activity Monitor (orders, trades, messaging volumes), Matching Trades Analyser (identifying collusion/wash trading), and Insider Dealing Event Tracker. Document and provide evidence of surveillance analysis within Compliance Surveillance Actions folders to facilitate decision-making regarding alert closure or identification of suspicious patterns. Analyse and prepare surveillance issues for recommendation and subsequent escalation to the Head of Compliance. Collaborate with Technology teams and/or vendors to develop new tools and surveillance controls. Oversee inquiries from external entities, including clearing members, and assume a leadership role in addressing regulator and exchange inquiries. Develop expertise required to contribute to the firm's market surveillance-related workstreams. Calibration of new and existing Scila surveillance alert parameters for testing before implementation and document the testing outcomes. Develop specific Scila surveillance alerts tailored to different asset classes. Assume responsibility for executing new alerts on historical trading data to identify potential patterns of market abuse. Take ownership of allocated surveillance projects, collaborating with Compliance and broader operational teams as necessary. Generate meaningful Management Information from Scila and other sources on a weekly basis. Participate in the preparation of the Compliance Board Pack. Maintain the Risk Register encompassing all surveillance matters and the Enhanced Monitoring List. Knowledge of algorithms is desirable, including participation in algorithm demos and understanding trading strategies. Comprehend algorithmic trading strategies and ascertain their compliance with exchange rules. Possess a sold understanding of exchange regulations. Conduct surveillance on market making, liquidity provision, and volume creation strategies, cross-referencing exchange-completed forms, and databases to identify traders or groups participating and to detect potential instances of collusive behaviour or market abuse. Evaluate personal account dealing confirmations in comparison to traders' trading account activities. The Successful Trade Surveillance Officer Will Have: Compile and evaluate documentation for internal investigations. Address and retrieve data for regulatory inquiries from entities such as the UK Financial Conduct Authority (FCA) or other pertinent regulatory bodies. Offer input on STOR recommendations regarding surveillance information for assessment. Assist in the preparation of STORS for submission to the FCA. Collaborate with Business Units, Legal, and Compliance Coverage teams to respond to regulatory inquiries as required.
A Global Law firm in London are looking for an AML Risk and Compliance Officer to join their team. You'll work with the AML Risk and Compliance Manager and be responsible for the processing of AML checks. The role also supports the firms MLRO and Risk and Compliance Director/Deputy MLRO in all areas of AML compliance. Key Responsibilities Completion of AML process for all Firm clients. Performing Client Due Diligence (CDD) on entities identified, through various publicly available and sources, and liaising with partners to obtain information needed Performing Politically Exposed Person sanctions searches as necessary. Updating Firm software tools and databases with relevant information. Analysing and evaluating AML software tools and databases. Compiling relevant information into final AML pack for sign off by MLRO or Deputy MLRO. Performing follow ups on outstanding AML files, ongoing monitoring on completed AML files and periodic checks on personal identification documentation obtained, as necessary. Assisting the AML Risk and Compliance Manager, the Risk and Compliance Director/Deputy MLRO and the MLRO in the review of the AML/CDD process and implementation of new and more efficient processes and procedures The Successful Applicant: Knowledge of relevant AML legislation and guidance Experience of performing CDD checks on entities and individuals (preferably in a law firm) Strong research skills This is ideally a full time position with hybrid working. You'll work within a really supportive and friendly team where the firm offer the best training possible for you to develop in your career. Salary competitive. If you would like further information please contact Rowena Bubb of Lewis Row Recruitment.
Mar 28, 2024
Full time
A Global Law firm in London are looking for an AML Risk and Compliance Officer to join their team. You'll work with the AML Risk and Compliance Manager and be responsible for the processing of AML checks. The role also supports the firms MLRO and Risk and Compliance Director/Deputy MLRO in all areas of AML compliance. Key Responsibilities Completion of AML process for all Firm clients. Performing Client Due Diligence (CDD) on entities identified, through various publicly available and sources, and liaising with partners to obtain information needed Performing Politically Exposed Person sanctions searches as necessary. Updating Firm software tools and databases with relevant information. Analysing and evaluating AML software tools and databases. Compiling relevant information into final AML pack for sign off by MLRO or Deputy MLRO. Performing follow ups on outstanding AML files, ongoing monitoring on completed AML files and periodic checks on personal identification documentation obtained, as necessary. Assisting the AML Risk and Compliance Manager, the Risk and Compliance Director/Deputy MLRO and the MLRO in the review of the AML/CDD process and implementation of new and more efficient processes and procedures The Successful Applicant: Knowledge of relevant AML legislation and guidance Experience of performing CDD checks on entities and individuals (preferably in a law firm) Strong research skills This is ideally a full time position with hybrid working. You'll work within a really supportive and friendly team where the firm offer the best training possible for you to develop in your career. Salary competitive. If you would like further information please contact Rowena Bubb of Lewis Row Recruitment.
I'm delighted to be partnering a global Insurance group to appoint a Chief Information Security Officer based in London City. This is a rare and exceptional opportunity looking for a technical and strategic CISO who has years dealing with board, risk committee, regulators and senior level business unit leaders. Someone able to provide technical InfoSec expertise across the group to deliver the right strategy and management of risk appetite. Client Details A leading global insurance group comprising distinct businesses covering various Insurance and Reinsurance service offerings across a well established international customer base. This is a highly compelling Insurance brand with a rich history and deep expertise operating across Lloyds, UK, European and global markets. This role presents a rare and exceptional opportunity looking for a technical and strategic CISO who has years dealing with board, risk committee, regulators and senior level business unit leaders. Someone able to provide technical InfoSec expertise across the group and build out the security function to deliver the right strategy and management of risk appetite. Description The Chief Information Security Officer will define the information security strategy in collaboration with the regulated entities for the UK and continental Europe and guide on cyber risk appetite. Recommend appropriate infosec investments and practices, including full support in relation to third parties data/cyber incidents and insurance services supply chain. Direct the implementation and monitoring of information security technologies, systems, standards and policies. Responsible for proactively managing all type of risks (people, processes and technology) relating to data protection (e.g. GDPR), privacy, information/cyber security, physical security, business continuity planning, crisis management and incident response, compliance and independent assurance of IT Controls. What You'll Spend Your Time Doing Define and implement enterprise security strategy and cyber risk policies and standards Co-ordinate with stakeholders to align enterprise security and risk strategies with business priorities Ensures the provision of services and capabilities for the protection of all our assets globally Oversee, manage and report any activity in relation to data protection, privacy and independent assurance of IT controls Monitor regulatory compliance and security policies to educates business unit leaders and service managers on compliance efforts Lead an experienced enterprise team that provides global coordination and oversight of business unit Information Risk Management processes and strategies Oversees development of an information security awareness program for each business unit and services group Support the implementation of operational resilience across the business Keeps abreast with evolving threats/risks, industry trends and works to implement best practices Proactively support audit and regulatory inquiries and external vendor activities. Participates in leading industry forums and consortiums (e.g. Lloyd's of London). Profile A proven Chief Information Security officer or Information Security Executive with a track record advising and delivering effective and risk balanced information security services within a global or matrix highly regulated organisation (e.g. Financial Services, Banking, Insurance). Applicants should have experience in dealing with Board, risk committee, regulators and operational leaders in complex stakeholders environment Preferably having worked in a Shared, Group or Consultancy Services organisation. A proven track record and approach to building an effective information security function including risk management, privacy and Data Protection practices Technical expertise well versed regulatory compliance frameworks such as ISO, SOX, BASEL II, EU DPD, HIPAA, and PCI DSS Adept in strategic planning, budgeting, and allocation Bachelor's or master's degree in computer science, business, finance or related discipline Job Offer Competitive Basic Salary Annual Bonus Flexible and Rewarding Pension up to 18% contribution 28 days annual leave + buy / sell option PMI, Flex Fund, Life Assurance Hybrid Working London, City Office.
Mar 28, 2024
Full time
I'm delighted to be partnering a global Insurance group to appoint a Chief Information Security Officer based in London City. This is a rare and exceptional opportunity looking for a technical and strategic CISO who has years dealing with board, risk committee, regulators and senior level business unit leaders. Someone able to provide technical InfoSec expertise across the group to deliver the right strategy and management of risk appetite. Client Details A leading global insurance group comprising distinct businesses covering various Insurance and Reinsurance service offerings across a well established international customer base. This is a highly compelling Insurance brand with a rich history and deep expertise operating across Lloyds, UK, European and global markets. This role presents a rare and exceptional opportunity looking for a technical and strategic CISO who has years dealing with board, risk committee, regulators and senior level business unit leaders. Someone able to provide technical InfoSec expertise across the group and build out the security function to deliver the right strategy and management of risk appetite. Description The Chief Information Security Officer will define the information security strategy in collaboration with the regulated entities for the UK and continental Europe and guide on cyber risk appetite. Recommend appropriate infosec investments and practices, including full support in relation to third parties data/cyber incidents and insurance services supply chain. Direct the implementation and monitoring of information security technologies, systems, standards and policies. Responsible for proactively managing all type of risks (people, processes and technology) relating to data protection (e.g. GDPR), privacy, information/cyber security, physical security, business continuity planning, crisis management and incident response, compliance and independent assurance of IT Controls. What You'll Spend Your Time Doing Define and implement enterprise security strategy and cyber risk policies and standards Co-ordinate with stakeholders to align enterprise security and risk strategies with business priorities Ensures the provision of services and capabilities for the protection of all our assets globally Oversee, manage and report any activity in relation to data protection, privacy and independent assurance of IT controls Monitor regulatory compliance and security policies to educates business unit leaders and service managers on compliance efforts Lead an experienced enterprise team that provides global coordination and oversight of business unit Information Risk Management processes and strategies Oversees development of an information security awareness program for each business unit and services group Support the implementation of operational resilience across the business Keeps abreast with evolving threats/risks, industry trends and works to implement best practices Proactively support audit and regulatory inquiries and external vendor activities. Participates in leading industry forums and consortiums (e.g. Lloyd's of London). Profile A proven Chief Information Security officer or Information Security Executive with a track record advising and delivering effective and risk balanced information security services within a global or matrix highly regulated organisation (e.g. Financial Services, Banking, Insurance). Applicants should have experience in dealing with Board, risk committee, regulators and operational leaders in complex stakeholders environment Preferably having worked in a Shared, Group or Consultancy Services organisation. A proven track record and approach to building an effective information security function including risk management, privacy and Data Protection practices Technical expertise well versed regulatory compliance frameworks such as ISO, SOX, BASEL II, EU DPD, HIPAA, and PCI DSS Adept in strategic planning, budgeting, and allocation Bachelor's or master's degree in computer science, business, finance or related discipline Job Offer Competitive Basic Salary Annual Bonus Flexible and Rewarding Pension up to 18% contribution 28 days annual leave + buy / sell option PMI, Flex Fund, Life Assurance Hybrid Working London, City Office.
Role Title: Technology Associate Department: Information Technology Team: GRSI Regulatory, Risk & Group Functions Location: London Type: Permanent About the Role: The Technology Associate Role is vital in providing the technical and architectural guidance to the Business Agility and GRSI Business Stakeholders. This role will be primarily working with the Portfolio Technical Leads and spans across a number of initiatives within the portfolio. About the Department & Team: The CIO Function reports into the Chief Information Officer, responsible for the delivery of key technical services to the Business ranging from technology to business processes. The team provides the architecture and the delivery skills and resources required to support business outcomes. Key Responsibilities: Working with the Technical Leads to provide technology and architecture support for GRSI Regulatory, Risk & Group Functions portfolio initiatives. Producing parts of and supporting the end-to-end architecture for initiatives Supporting key architecture decisions for projects and aligning stakeholders to a proposed approach Communicating the architecture, key design decisions and approaches on assigned initiatives to key stakeholders, project bodies, relevant governance/ assurance forums including the Architecture Review Board Collaborate and work with Product Owners, Product Analysts and Developers which help achieve the GRSI technology outcomes Facilitating and participating in detailed design reviews and ensuring that all components of the solution are aligned to the target state vision Contribute to Portfolio level 30/60/90-day planning sessions Adherence to all relevant regulatory requirements forms part of your role, and the demonstration of behaviours as set out in the Conduct Risk Policy, as they relate to your role, is core to our commitment to our Values, placing customers at the centre of our business and behaving with integrity. We expect you to understand your responsibilities relating to all regulatory and internal requirements, and to proactively demonstrate compliance with these requirements and behaviours at all times. These requirements include the Senior Managers and Certification Regime Conduct Rules ,Solvency II, fair treatment of customers, Financial Crime, Data Protection, Conflicts of Interest, and Whistleblowing Skills and Experience: Essential 2-5 years' experience in IT architecture, digital delivery or technology consulting Producing parts of and supporting the end-to-end architecture for a project, spanning disparate software and infrastructure components Supporting key architecture decisions for projects and aligning stakeholders to a proposed approach Modelling current and future state architecture design Good knowledge of enterprise integration patterns Excellent communication skills Experience working in an Agile environment Working closely with Product Owners and Business Analysts to help translate desired business outcomes into technology solutions Working with development teams to ensure detailed component-level design responds to high-level architecture. Working with the Technical Leads and Portfolio Architects to ensure that data and functional architectures adhere to the architecture principles ultimately supporting the target state vision for the enterprise University degree in a mathematical-scientific field, information technology, or business administration Cloud Certified or working towards it (AWS or Azure) Desirable Experience in Data Architecture concepts (management, security, governance, database, integration, quality) Experience in cloud solutions (AWS or Azure) and microservices architecture Experience leveraging emerging technologies within the insurance domain desirable Experience working in the Insurance domain with experience of working on one or multiple Insurance solutions is highly desirable. We will however also consider applications who have worked with finance clients. Carbon60, Lorien & SRG - The Impellam Group STEM Portfolio are acting as an Employment Business in relation to this vacancy.
Mar 28, 2024
Full time
Role Title: Technology Associate Department: Information Technology Team: GRSI Regulatory, Risk & Group Functions Location: London Type: Permanent About the Role: The Technology Associate Role is vital in providing the technical and architectural guidance to the Business Agility and GRSI Business Stakeholders. This role will be primarily working with the Portfolio Technical Leads and spans across a number of initiatives within the portfolio. About the Department & Team: The CIO Function reports into the Chief Information Officer, responsible for the delivery of key technical services to the Business ranging from technology to business processes. The team provides the architecture and the delivery skills and resources required to support business outcomes. Key Responsibilities: Working with the Technical Leads to provide technology and architecture support for GRSI Regulatory, Risk & Group Functions portfolio initiatives. Producing parts of and supporting the end-to-end architecture for initiatives Supporting key architecture decisions for projects and aligning stakeholders to a proposed approach Communicating the architecture, key design decisions and approaches on assigned initiatives to key stakeholders, project bodies, relevant governance/ assurance forums including the Architecture Review Board Collaborate and work with Product Owners, Product Analysts and Developers which help achieve the GRSI technology outcomes Facilitating and participating in detailed design reviews and ensuring that all components of the solution are aligned to the target state vision Contribute to Portfolio level 30/60/90-day planning sessions Adherence to all relevant regulatory requirements forms part of your role, and the demonstration of behaviours as set out in the Conduct Risk Policy, as they relate to your role, is core to our commitment to our Values, placing customers at the centre of our business and behaving with integrity. We expect you to understand your responsibilities relating to all regulatory and internal requirements, and to proactively demonstrate compliance with these requirements and behaviours at all times. These requirements include the Senior Managers and Certification Regime Conduct Rules ,Solvency II, fair treatment of customers, Financial Crime, Data Protection, Conflicts of Interest, and Whistleblowing Skills and Experience: Essential 2-5 years' experience in IT architecture, digital delivery or technology consulting Producing parts of and supporting the end-to-end architecture for a project, spanning disparate software and infrastructure components Supporting key architecture decisions for projects and aligning stakeholders to a proposed approach Modelling current and future state architecture design Good knowledge of enterprise integration patterns Excellent communication skills Experience working in an Agile environment Working closely with Product Owners and Business Analysts to help translate desired business outcomes into technology solutions Working with development teams to ensure detailed component-level design responds to high-level architecture. Working with the Technical Leads and Portfolio Architects to ensure that data and functional architectures adhere to the architecture principles ultimately supporting the target state vision for the enterprise University degree in a mathematical-scientific field, information technology, or business administration Cloud Certified or working towards it (AWS or Azure) Desirable Experience in Data Architecture concepts (management, security, governance, database, integration, quality) Experience in cloud solutions (AWS or Azure) and microservices architecture Experience leveraging emerging technologies within the insurance domain desirable Experience working in the Insurance domain with experience of working on one or multiple Insurance solutions is highly desirable. We will however also consider applications who have worked with finance clients. Carbon60, Lorien & SRG - The Impellam Group STEM Portfolio are acting as an Employment Business in relation to this vacancy.
Job Title: IA Support Officer Location: Devonport Royal Dockyard Contract Duration: 12 months Pay Rate: £25-£75/hr - depending on experience Business Unit: Naval Nuclear Devonport Plymouth Shared Clearance: SC (SCSC) Overall Department Direction: A significant programme of infrastructure investment is required on the Devonport site to meet the needs of the future MOD ship and submarine programmes. The 'Major Infrastructure Projects' (MIP) Business Unit has been established to focus on the significant facility developments. The team is seeking an IA Support Officer to join them on a permanent, full-time basis. Main Purpose of Role: The IA Support Officer reports to the MIP IA Manager and provides support to the team, assisting in the delivery of an effective Information Assurance function. Key responsibilities include: Management of security incident reporting/trending and LFE within the business. Maintenance of the Defence Nuclear Information (DNI) register for the business, conducting assurance and spot checks in relation to handling procedures. Management of a number of SharePoint systems demonstrating compliance with our defence client policies, regulatory, and customer requirements. Required Knowledge, Skills, Experience, and Competences: The candidate should have experience working in a regulatory environment. Nuclear experience is desirable but not essential (training will be given). The ideal candidate will be highly organized and motivated to provide support to a busy IA team. Required skills include: Editorial and briefing skills, with the ability to summarize complex information effectively. Effective interpersonal skills. Experience in MS Word, Excel, PowerPoint, and SharePoint. Qualifications: Start on baseline - will need SC and NNPPI - must be a British national. Role Responsibilities: Generate reports. Administration of metadata/analysis. Prepare for audits/collaborate with wider teams. Prepare meetings, minutes, communication campaigns, and support the wider needs of the team. Skills Needed: SharePoint - essential, intermediate level. Ideally, an understanding of lists, libraries, commissions, built pages, and administration. Power, Excel - one or the other (or both). Nintex form or Nintex workflow - beneficial. Background in a regulated environment. Defence Nuclear Information SharePoint Administration Risk Assessment Nuclear Safety Defence Industry Audit Preparation Data Governance Compliance Reporting Defence Infrastructure Incident Trend Analysis Policy Compliance Interpersonal Skills MS Office Suite Document Management
Mar 27, 2024
Full time
Job Title: IA Support Officer Location: Devonport Royal Dockyard Contract Duration: 12 months Pay Rate: £25-£75/hr - depending on experience Business Unit: Naval Nuclear Devonport Plymouth Shared Clearance: SC (SCSC) Overall Department Direction: A significant programme of infrastructure investment is required on the Devonport site to meet the needs of the future MOD ship and submarine programmes. The 'Major Infrastructure Projects' (MIP) Business Unit has been established to focus on the significant facility developments. The team is seeking an IA Support Officer to join them on a permanent, full-time basis. Main Purpose of Role: The IA Support Officer reports to the MIP IA Manager and provides support to the team, assisting in the delivery of an effective Information Assurance function. Key responsibilities include: Management of security incident reporting/trending and LFE within the business. Maintenance of the Defence Nuclear Information (DNI) register for the business, conducting assurance and spot checks in relation to handling procedures. Management of a number of SharePoint systems demonstrating compliance with our defence client policies, regulatory, and customer requirements. Required Knowledge, Skills, Experience, and Competences: The candidate should have experience working in a regulatory environment. Nuclear experience is desirable but not essential (training will be given). The ideal candidate will be highly organized and motivated to provide support to a busy IA team. Required skills include: Editorial and briefing skills, with the ability to summarize complex information effectively. Effective interpersonal skills. Experience in MS Word, Excel, PowerPoint, and SharePoint. Qualifications: Start on baseline - will need SC and NNPPI - must be a British national. Role Responsibilities: Generate reports. Administration of metadata/analysis. Prepare for audits/collaborate with wider teams. Prepare meetings, minutes, communication campaigns, and support the wider needs of the team. Skills Needed: SharePoint - essential, intermediate level. Ideally, an understanding of lists, libraries, commissions, built pages, and administration. Power, Excel - one or the other (or both). Nintex form or Nintex workflow - beneficial. Background in a regulated environment. Defence Nuclear Information SharePoint Administration Risk Assessment Nuclear Safety Defence Industry Audit Preparation Data Governance Compliance Reporting Defence Infrastructure Incident Trend Analysis Policy Compliance Interpersonal Skills MS Office Suite Document Management
Information and Records Officer An exceptional opportunity to work within an environmentally conscious and sustainable organisation.Are you passionate about ensuring that information flows seamlessly and securely within an organisation? Do you thrive in a dynamic environment where you can lead transformative projects? If so, we have the perfect opportunity for you! Start Date: ASAP Commitment: 3-6 Months Hours: Monday - Friday, 37 Hours per Week Pay Rate: £15.52 per Hour Location: Hybrid/ Offices Based in Bristol 2 days required in the office a week Job Description: Ensure the organisation complies with information rights laws. Improve records management practices. Handle requests under information rights laws. Manage compliance with the Public Records Act. Lead paper-to-digital transformation efforts. Develop and promote retention schedules. Maintain consistent retention across systems. Assist in developing policies. Help identify and investigate data breaches. Provide customer-focused guidance. Assist with training on information management. Flag areas of high information risk. Support strategic information management. Stay updated on data protection laws. Experience Required Working experience of records management legislation. Excellent working knowledge of SharePoint. Project management experience, driving initiatives from inception to completion. Ability to provide clear written and verbal explanations, facilitating effective communication across teams. Don't miss this chance to join our dynamic team and make a meaningful impact on information management within our organization! To apply please click on the link
Mar 27, 2024
Full time
Information and Records Officer An exceptional opportunity to work within an environmentally conscious and sustainable organisation.Are you passionate about ensuring that information flows seamlessly and securely within an organisation? Do you thrive in a dynamic environment where you can lead transformative projects? If so, we have the perfect opportunity for you! Start Date: ASAP Commitment: 3-6 Months Hours: Monday - Friday, 37 Hours per Week Pay Rate: £15.52 per Hour Location: Hybrid/ Offices Based in Bristol 2 days required in the office a week Job Description: Ensure the organisation complies with information rights laws. Improve records management practices. Handle requests under information rights laws. Manage compliance with the Public Records Act. Lead paper-to-digital transformation efforts. Develop and promote retention schedules. Maintain consistent retention across systems. Assist in developing policies. Help identify and investigate data breaches. Provide customer-focused guidance. Assist with training on information management. Flag areas of high information risk. Support strategic information management. Stay updated on data protection laws. Experience Required Working experience of records management legislation. Excellent working knowledge of SharePoint. Project management experience, driving initiatives from inception to completion. Ability to provide clear written and verbal explanations, facilitating effective communication across teams. Don't miss this chance to join our dynamic team and make a meaningful impact on information management within our organization! To apply please click on the link
Senior Microsoft Purview Consultant Central London 2-3 days per week 12 months + Senior Microsoft Purview Consultant required for a leading organisation in London. We're looking for someone with strong experience in retention and data loss prevention, you will play a pivotal role in helping our client safeguard their sensitive information and ensure compliance with regulatory requirements. Using your experience with Microsoft Purview, you will design and implement strategies for data retention, classification, and protection. (Any reinsurance / banking background would be desirable) The role require 2-3 days on site in London and we're ideally looking for someone with an immediate start. Key Responsibilities: Work with the business to assess their data retention and data loss prevention needs, taking into account industry regulations and compliance standards. Ability to lead the design and implementation of Purview solutions tailored to enhance data retention policies, ensuring the proper classification and lifecycle management of data assets. Help develop and implement data loss prevention (DLP) strategies utilizing Purview and other complementary tools to identify, monitor, and mitigate risks associated with data exposure or leakage. Conduct comprehensive data assessments and audits to identify areas of improvement and recommend actionable solutions for enhancing data protection measures. Provide guidance and expertise on best practices for implementing data retention and DLP policies, including user training and awareness programs. Collaborate closely with cross-functional teams, including cybersecurity experts, legal counsel, and compliance officers, to ensure alignment with organizational policies and regulatory requirements. Interested? Please submit your updated CV to Olivia Yafai at Crimson for immediate consideration. Not interested? Do you know someone who might be a perfect fit for this role? Refer a friend and earn 250 worth of vouchers! Crimson is acting as an employment agency regarding this vacancy. For more information on how Crimson uses data, please see our Privacy Statement at the bottom of our website.
Mar 27, 2024
Contractor
Senior Microsoft Purview Consultant Central London 2-3 days per week 12 months + Senior Microsoft Purview Consultant required for a leading organisation in London. We're looking for someone with strong experience in retention and data loss prevention, you will play a pivotal role in helping our client safeguard their sensitive information and ensure compliance with regulatory requirements. Using your experience with Microsoft Purview, you will design and implement strategies for data retention, classification, and protection. (Any reinsurance / banking background would be desirable) The role require 2-3 days on site in London and we're ideally looking for someone with an immediate start. Key Responsibilities: Work with the business to assess their data retention and data loss prevention needs, taking into account industry regulations and compliance standards. Ability to lead the design and implementation of Purview solutions tailored to enhance data retention policies, ensuring the proper classification and lifecycle management of data assets. Help develop and implement data loss prevention (DLP) strategies utilizing Purview and other complementary tools to identify, monitor, and mitigate risks associated with data exposure or leakage. Conduct comprehensive data assessments and audits to identify areas of improvement and recommend actionable solutions for enhancing data protection measures. Provide guidance and expertise on best practices for implementing data retention and DLP policies, including user training and awareness programs. Collaborate closely with cross-functional teams, including cybersecurity experts, legal counsel, and compliance officers, to ensure alignment with organizational policies and regulatory requirements. Interested? Please submit your updated CV to Olivia Yafai at Crimson for immediate consideration. Not interested? Do you know someone who might be a perfect fit for this role? Refer a friend and earn 250 worth of vouchers! Crimson is acting as an employment agency regarding this vacancy. For more information on how Crimson uses data, please see our Privacy Statement at the bottom of our website.