Information Security Officer

We are looking for an experienced Information Security Officer to design and enforce policies and procedures that protect our organization’s infrastructure from all forms of security breaches. You will be responsible for identifying vulnerabilities and working with our IT partner to resolve them, ensuring that our systems and data remain secure.

To be successful as an information security officer, you should have expert analytical skills and in-depth knowledge of best practices to prevent a wide range of security threats. Top candidates will also be excellent communicators, able to train and educate our staff in various information security topics.

You will be responsible for overseeing a range of technical and process security controls and leading a programme of continuous improvement in response to changing security threats and risk. The role requires a thorough understanding of the technology underpinning the company’s IT systems, as well as a broad, up-to-date knowledge of information security frameworks, pertinent regulation and legislation, vulnerability management, incident management and response, secure development techniques and approaches, Cyber Security engineering and operations, and management and governance of Cyber risk and Cyber Security.

Responsibilities:
  • Identifying vulnerabilities in our current network.
  • Developing and implementing a comprehensive plan to secure our computing network.
  • Monitoring network usage to ensure compliance with security policies.
  • Keeping up to date with developments in IT security standards and threats.
  • Performing penetration tests to find any flaws.
  • Documenting any security breaches and assessing their damage.
  • Collaborating with management and the IT service provider to improve security and risk management in the company.
  • Management of the relationship with the external IT service provider to ensure that standards around cybersecurity are met, and adequate service provided to the company.
  • Educating colleagues about security software and best practices for information security.
  • Define, develop and maintain a business-aligned Information and Cyber Security strategy and operating model.
  • Define and embed an Information Security Policy Framework across the company that addresses the needs of the staff and other external stakeholders in line with relevant legislation and industry standards.
  • Ensure that the culture, policies, structures and reporting systems are in place to allow the Information Security function to achieve the highest standards of quality, legal and regulatory compliance and corporate governance in all areas.
  • Direct, and assist as necessary, investigations into information security breaches and pursue associated disciplinary and legal matters.
Requirements:
  • Bachelor’s degree in information technology, IT systems security or a related field.
  • Professional information security certification.
  • Basic knowledge and experience with networking concepts, protocols and services.
  • Experience in an information security role for 2-3 years.
  • Solid knowledge of various information security frameworks.
  • Demonstrable experience in meeting Cyber Essential Plus certification.
  • Experience of working with and managing SharePoint.
  • Experience of working with and managing security controls for Mac OSX, Windows/Linux.
  • Strong verbal and written communication and presentation skills, including an ability to effectively communicate with stakeholders across the organisation.
  • Excellent problem-solving and analytical skills.
  • Ability to educate a non-technical audience about various security measures.

 

Location: This position is open to candidates based in the UK

Salary: Commensurate with experience

Hours: Full Time

Contract Type: Fixed Term or Permanent

In return, you get...
  • A competitive salary
  • Flexible working hours / remote working options
  • Competitive pension scheme
  • A positive and supportive environment

To Apply please submit both your CV and a cover letter linking your experience to our requirements in order to have your application considered. References will be required prior to appointment. We will process applications on a rolling basis until the position is filled, hence we suggest to apply early.

At Trilateral Research, we value privacy and data protection rights. We have a longstanding data protection culture and promote robust ethical standards in data management and research ethics. Please read our Privacy Notice in relation to our recruitment activities before submitting your application to work with us.

For any questions about this vacancy please email .

Trilateral Research is a UK and IE-based enterprise founded in 2004. Our teams include social scientists, data scientists, ethical, legal and human rights experts who work across the technology-social disciplinary divide. We apply rigorous, cutting-edge research when developing and assessing new technologies to ensure they achieve sustainable innovation and measurable impact.

Our culture is based on delivering high-quality outputs through our commitment and passion for what we do. We work in an open and collaborative environment where the team culture provides support amongst peers and colleagues. Find out about our people and our culture, and see how our mission drives the projects we take on, the key data protection services we provide, and the technology products and supplementary services we develop.

We are looking for an experienced Information Security Officer to design and enforce policies and procedures that protect our organization’s infrastructure from all forms of security breaches. You will be responsible for identifying vulnerabilities and working with our IT partner to resolve them, ensuring that our systems and data remain secure.

To be successful as an information security officer, you should have expert analytical skills and in-depth knowledge of best practices to prevent a wide range of security threats. Top candidates will also be excellent communicators, able to train and educate our staff in various information security topics.

You will be responsible for overseeing a range of technical and process security controls and leading a programme of continuous improvement in response to changing security threats and risk. The role requires a thorough understanding of the technology underpinning the company’s IT systems, as well as a broad, up-to-date knowledge of information security frameworks, pertinent regulation and legislation, vulnerability management, incident management and response, secure development techniques and approaches, Cyber Security engineering and operations, and management and governance of Cyber risk and Cyber Security.

We are an Equal Opportunities employer and positively encourage applications from suitably qualified and eligible candidates, regardless of their age, sex, race, disability, sexual orientation, gender reassignment, religion or belief, marital/civil partnership status, or pregnancy and maternity. We are a Disability Confident committed and Living Wage employer.

Disability confident

Sign up for our newsletter

Join our mailing lists to receive updates about our latest research and to hear about our free public events and exhibitions.  If you would like to find out more about how we manage your personal information please see our privacy policy.