Hudson is proud to be working with a local government agency in the search for a principal cyber security GRC specialist to guide them in the uplift of information security standards across the organisation. A key pillar in this uplift will be achieving ISO 27001 accreditation.The workplace has a flexible hybrid working model (2 days from home). This is a 12 month fixed term contract with funding allocated for ongoing permanency in the position.Responsibilities
- Lead the development and implementation of policies and procedures to gain ISO27001 accreditation
- Proactively seek out ways to uplift information security and drive continuous improvement
- Be the SME for the ISMS development
- Perform risk assessments to identify gaps and advise on ways to address and mitigate risks as required
- Inform technical teams of their information security responsibilities and guide them on how to adhere to them
- Previous experience gaining ISO 27001 accreditation with other organisation(s)
- The confidence and experience to take on a lead role driving security uplift
- Experience working with audit schedules
- Strong communication skills with the ability to educate technical and non-technical stakeholders on information security requirements
- 3+ years in information security GRC roles