Accessibility Links

Information Security Officer

  • Job reference: 913775
  • Location: Gloucester, Gloucestershire
  • Salary: GBP45000 - GBP60000 per annum
  • Job type: Permanent
  • Sector: Nuclear
  • Date posted: 13/04/2017

Main responsibilities:

  • Compliance with the Information Security requirements of the Nuclear Industries Security Regulations (NISR) 2003 (as amended).
  • Develop and contribute to producing Contract Security policies, processes and procedures.
  • Ensure that third party suppliers and delivery partners (hereafter referred to as 'Contractors') apply an acceptable level of protective security and are compliant with the requirements of NISR 2003.
  • Liaise with the Commercial team to ensure that Information Security are notified of all potential classified contracts / to educate on required security measures that need to be built into processes, procedures and ways of working.
  • Take action to ensure that in all contracts involving SNI, appropriate Security Measures are included.
  • Provide security advice to contractors and leading on investigations when Commercial information or SNI has been the subject of a security breach or has been compromised.
  • Carry out an annual review of the management of all classified contracts, particularly those aspects relating to the security of Commercial information or SNI.
  • Ensure that contractors are aware of their legal obligation for reporting any breach, or suspected breach of security to ONR (through ) in accordance with NISR 2003 Regulations 22.
  • Assist the Information & Cyber Security Manager with the organisation of Information Security within , liaison with external authorities and organisations, providing specialist advice on security audits, reviews and investigations relating to Information Security issues, and assist with Information Security awareness and training.

Qualifications/Experience:

  • Relevant graduate degree (e.g Risk Management, or Information Technology (or relevant experience).
  • Membership of a relevant professional institution such as the Institute of Information Security Professionals.
  • Experience of delivering Information Security within large scale delivery programs and projects.
  • Demonstrable experience in carrying out risk assessments and security audits in order to achieve and maintain compliance, with up to date knowledge of security compliance issues.
  • Demonstrable understanding and experience of HMG security and ISO 27000 standards.
  • In-depth knowledge and experience of Nuclear Security regulations and standards including the HMG Security Policy Framework & Government Security Classification.
  • Demonstrates effective planning, prioritisation and delivery (through self and others).
  • Ability to communicate, influence and build productive and collaborative relationships with a diverse range of internal and external stakeholders.
  • Ability to spot and contribute to delivering everyday improvements.
  • Displays a questioning attitude, with clear evidence of using initiative and judgement.
  • Ability to learn, adapt and thrive, delivering value in a changing and evolving organisation.
  • Consistently demonstrates behaviours aligned to values: safety, courage, integrity, collaboration and inspiration.
  • Flexibility and mobility to undertake business travel as required.
  • Experience of devising or playing a key role in contributing to policies/procedures.
  • Evidence of continuous professional development, Post Graduate degree preferred in Information Security or professional qualification such as CISM, CISSP, CESG CP.
  • Strong verbal and written communications to include excellent documentation and presentation skills.

Desirable:

  • An understanding of the UK civil nuclear industry.
  • Demonstrable understanding and experience of Civil Nuclear Security regulations and standards.
  • A blend of both government and commercial experience is beneficial.
  • An understanding and some experience of wider security requirements within personnel and physical security is beneficial.
  • International experience.
  • Member of relevant institute.
Similar jobs
Project Engineer - Electrical/C&I
  • Salary GBP35000 - GBP40000 per annum
  • Job type Permanent
  • Location Suffolk
  • Description Project Engineer - Electrical/C&I With more than fifty years of Nuclear experience, our Client has unrivalled nuclear capability and provides full life-cycle solutions to our nuclear clients