Data Risk Officer (Information Security)

Kennedys is looking for a Data Risk Officer (Information Security) to join the Risk \& Compliance team, supporting the Global Information Security Manager in running the Information Security Management System (ISMS), ISO 27001 compliance, cloud security governance, and cyber resilience activities.

Team

Kennedys Risk \& Compliance team handles a wide range of partnership and risk and compliance issues for the firm and acts as an in\-house legal department assisting with regulatory and professional conduct enquiries. Within this the Data Risk Team specialises in risk to data, privacy and information as well as compliance with associated regulations and best practise globally. This includes keeping abreast of new and emerging risks associated with ever developing technology such as AI.

Key responsibilities

• Support ISMS and ISO27001 control framework


• Assist with security risk assessments and audits


• Work with IT to define support cloud security and technology risk reviews


• Assist in cyber resilience and incident management


• Support monitoring, threat analysis, and vulnerability tracking


• Contribute to governance, reporting and training

• Knowledge of ISO27001/ISMS or other recognized security frameworks


• Understanding of cloud security principles


• Awareness of cyber security and resilience concepts


• Strong analytical and organisational skills


• Communication skills across technical and business teams

• *where a level of experience is indicated, this is a guideline only and represents the amount of time we would usually expect a candidate to accumulate the requisite level of experience. This does not preclude applications from candidates with more or less experience.*

This listing is from indeed. View original listing ↗