Senior Information Security Specialist

📋 Description

• Lead the ISMS development and continuous improvement.
• Update the risk register, conduct risk assessments, and report posture.
• Oversee internal security audits, testing, and compliance reviews.
• Define data classification and data protection policies.
• Lead DDQ responses and review security clauses in contracts.
• Manage end-to-end third-party risk management and supplier monitoring.

🎯 Requirements

• Experience in Governance, Risk, and Compliance (GRC).
• ISMS design/implementation aligned to ISO 27001, NIST, etc.
• Strong risk management, audit, compliance, and third-party risk.
• Experience handling client security questionnaires (DDQs).
• Experience supporting incident response governance and escalation.
• Excellent communication and stakeholder management.

🎁 Benefits

• Generous equity allocations with upside potential.
• 25 days holiday plus bank holidays.
• Private health, dental, and eye care cover.
• Employee pension with Smart Pension.
• Enhanced parental leave.
• Home office allowance.