Information Security Expert - Technical

Job description

Are you an expert in Information Security? If you are, we have an exciting new opportunity for an Information Security Expert to join our IT team in Milton Keynes.

Your Role

You'll be responsible for providing hands on technical assistance and guidance with the design, installation and end to end documentation of IT systems to ensure they are deployed and maintained in a secure manner and meet all relevant ISMS controls. You'll manage information security incidents, carry out technical or forensic investigations, information security testing and ensure any changes are implemented in line with all security policies. In addition, you'll be interpreting information security policies and standards for our internal functions and will assist with the implementation of these and other information security requirements.

Your Responsibilities

·  Ensure our UK organisation meets its information security obligations in line with ISO 27001 through the selection and implementation of required controls and maintenance of the ISMS.
·  To maintain a secure, compliant, environment through the development and maintenance of comprehensive standards, guidelines, procedures and system architecture designs.
·  To maintain an efficient and effective IT infrastructure by implementing systems to Best Practice and establishing sound housekeeping and maintenance activities.
·  Ensure development and implementation of new systems meet the required levels of security through collaboration with other teams.
·  Ensure that Kuehne + Nagel UK meets information security KPI targets by monitoring reports, alerts, warnings or trends and taking appropriate action.
·  Preserve evidence for investigation utilising a variety of techniques following a cyber or information security incident.
·  Be heavily involved in the risk management process, from identification and assessment to owning technical risks and coordination of risk treatment with other teams.

Your Skills and Experiences

·  Extensive experience of working in IT, some of this experience will be in enterprise 3rd line support (i.e. support of server-based systems).
·  Very strong experience in mapping system architecture and writing documentation.
·  SC cleared preferable, otherwise willing to undergo SC vetting.
·  Solid understanding of ISO 27001/27002, CE+ or equivalent as well as CEH, CISSP, Security+, GIAC or equivalent information security industry certifications.
·  Strong knowledge of information security concepts and key principles with a experience of technical security tools, endpoint tools and AV.
·  Strong knowledge of firewalls, IDS, SIEM, vulnerability assessment and other tools.
·  Detailed knowledge of the Microsoft Operating Systems and key application suites coupled with sound knowledge of TCP/IP, routing/switching, DNS, NAT, packet tracing and other networking technologies and concepts.
·  Positive and self-motivated with the ability to work under own initiative.  you'll also have excellent stakeholder and relationship building experience – you will work with our customers, partners, business units, suppliers and internal teams to interpret information security policies, standards, contracts and assist with the implementation of these to the required specification.

Good Reasons to Join

In return for your commitment, we can offer you a fantastic opportunity within a team that supports and services our business and our people on a daily basis. We offer a competitive salary, company car and 23 days holiday plus bank holidays (rising to 25 after 5 years’ service). In addition, we offer a contributory pension plan, private medical insurance and life assurance and our Route 2 Rewards scheme offers discounts and savings on a wide range of high street and internet goods and services.