AMVETS Jobs

Information Assurance Professional

Job Req ID: 29913

Posting Date: 26 Apr 2024

Function: Cyber Security

Unit: Business

Location:

Building 31, Budapest, Hungary

Salary: Competetive

Why this job matters

• Maximise the chances of BT winning and retaining profitable, high-quality business.

• Convince Customers that BT can be entrusted with their information assets and, further, that BT is the best supplier into which to put that trust.

• Mitigate the risk that BT signs contracts to deliver products and services obligating BT to deliver security services which it cannot deliver or has not costed for. This results in the erosion of margin or outright financial loss. It is also likely that intangible assets such as the BT brand and customer goodwill will also be jeopardised and their value eroded.

• Evidence Security Information Assurance compliance in-life and achieve formal certification/accreditation where required.

• Evidence Security Obligations are satisfied taking a risk based approach to compliance to ensure maximum profit potential.

What you’ll be doing

• Responsible for supporting measures to ensure the Account & Service teams fully understand and appreciate their Security contractual obligations in respect of Information Assurance.

• Responsible for the maintainence of the agreed governance framework as outlined in the IA Workbook in order to evidence BT’s compliance to our external customers.

• Responsible for assisting with the completion of assigned information assurance work packages to meet the agreed time/cost/quality measures.

• Responsible for managing and supporting the agreed controls and audit schedules to evidence BT’s compliance with the Information Assurance obligations.

• Accountable for undertaking the agreed audits to confirm compliance against applicable controls.

• Responsible for liaising with BT Internal Audit teams and external auditors to ensure that the related compliance audit requirements for the contract are met and the audits are supported.

• Accountable for management and maintenance of the IA Security Risk register and the related Corrective and Preventative Actions log.

• Responsible for supporting the established business relationships with customers, suppliers and stakeholders to ensure effective provision of information assurance services.

• Responsible for ensuring the compliant delivery of the BT Products and Services required to meet the customer’s Contractual Security requirements.

• Accountable for the provision of progress reports against assigned IA work packages in a simple, clear and timely manner to the contract lead.

Skills required for the job

• Policies and Standards: Knowledge of policies and standards within an organisation or across a range of clients. Understanding of Information Security standards to support decisions & ensure compliance.

• Compliance: Basic knowledge and understanding of the legal & regulatory compliance regime that BT operates under and how this can be tested and evidenced.

• ISO27001: Basic level of understanding of primary controls and how to implement requirements.

• Data Protection: Awareness of core requirements in respect of Data Protection (re.EU GDPR)

• Information Assurance Framework: Awareness and basic understanding the CIISEC Skills Framework.

• Auditor: Appreciation and understanding of core internal information security audit requirements.

• Threat Awareness: Appreciation of the internal and external threat landscape and options to mitigate.

• Incident Management: Basic knowledge of how to report, review and implement a viable approach to security incident management.

• Information Risk Assessment: Ability to review and interpret the requirements of information security management to assess current and future risks.

Experience you would be expected to have

Mandatory:

• Appreciation of, or exposure, to roles that require governance & compliance input (e.g Audit, Risk Management, Policy & Standards)

• Basic level understanding or appreciation of ISO27001

• Hold and maintain adequate security clearance

• Basic Excel/Powerpoint/Word skills

• Able to demonstrate problem solving skills

• Evidence of the ability to work independently

• Good written & verbal communication skills

Preferred:

• Familiarity with Auditing tools and techniques

• Commercial awareness