Identifier Project: REF8149
10 months ago
Information Security Consultant- SOC2 / ISO27001. REMOTE UK
Internal opportunity. UK based. Remote
Working closely with internal stakeholders to ensure that the internal information security function is delivering best practice and ensuring the business meets SOC2 and ISO27001 compliance.
You must have working knowledge and experience work within a SOC2 and ISO27001 certified environment. As a primary function of this role will be ensuring the business adheres to all audit / compliance requirements of SOC2 and ISO27001.
Your role will include, but not be limited to the following.
Audit. Working with external auditors and internal stakeholders.
· Ensuring gaps identified have radiation plans in place.
· Managing risk register.
· SOC2 and ISO 27001 audit preparedness.
· SOC2 ISO27001 internal implementation
3rd Party supplier risk management
· New and existing supplier reviews, security questionnaires, measuring risk scores etc.
Information Security Standard and Policies
· Maturing information security policies
· Internal Gap Analysis
· Business Continuity impact assessments, reviews, improvement.
· Disaster Recovery planning, testing, review.
· Working with vulnerability teams / penetration testing teams to help plan, scope and coordinate patches / remediation.
· Incident reporting / executive summaries.
The business is working to ensure and enhance the adherence to ISO27001 and SOC2 controls.
Any experience working within a cloud AWS Cloud environment is highly desirable.
Looking to interview immediately.
Apply today for more information.