. This role can also offer blended working after probationary period (6 months) - 3 days in the office and 2 remote Close Date: 23 / 06 / 2024 We also provide the following additional benefits Personal Pension Plan – Personal contribution rates of 4% or 5% (UK Power Networks … Information Security Management System Support: Operate and maintain the information security management system and artefacts, in compliance with ISO27001/ 27002 including the governance forum agenda and minutes. Policies and Standards: develop GRC policies, standards and procedures to monitor UKPN information security controls, exceptions … We ask that you have a detailed knowledge and practical expertise in at least 3 of the following specialist areas: - Specific Industry Standards IS / IT Operational Controls and Governance Business Continuity Planning and Disaster Recovery Supply Chain and 3rd Party Risk Management You will have problem solving skills more »
with some experience in assurance testing techniques and methodologies. Bachelor's Degree in Cybersecurity, Computer Science, Information Systems, related field or equivalent training and / or experience. Professional Information Security certification by a recognised professional body such as Certified in Information Security Management (CISM), Certified Information Systems Security Professional … always come first. An understanding of compliance and regulatory frameworks such as the National Cyber Security Centre (NCSC) Cyber Assessment Framework (CAF) and ISA /IEC 62443, ISO/IEC27001/ 27002, and GDPR. Working knowledge of security … technologies including SIEM, SOAR, EDR, AV, IDS / IPS, NAC, AD, DLP, Web Filtering, Email Filtering, Behavioural Analytics. Knowledge of adversarial tactics, techniques, procedures (TTPs) and industry standard frameworks (Mitre ATT&CK). Experience working within a regulated environment, preferably Energy sector Critical National Infrastructure (CNI more »
related to the risk and control environment. Operate and maintain the information security management system in compliance with ISO27001/ 27002. Develop GRC policies, standards, and procedures to monitor information security controls. Ensure a fit for purpose IT control environment and support a roadmap more »