Iris Care Group seeks a forward thinking Senior IT Business Partner to lead risk management, security strategy, and compliance initiatives. This role is crucial for ensuring IT operations align with regulatory standards and organizational goals. Key areas include strategic planning, incident response, and integrating compliance frameworks (e.g., GDPR, ISO 27001) to protect critical systems.
The successful candidate will develop risk management processes, crisis plans, and vendor oversight, while collaborating with stakeholders to implement security measures and enhance compliance., * Risk & Compliance: Develop IT risk frameworks, perform assessments, and ensure regulatory compliance.
-
Incident Response: Maintain an Incident Response Plan and coordinate rapid incident resolution (e.g., cybersecurity breaches, data loss).
-
Vendor Risk: Establish a Vendor Risk Management program to assess third-party compliance.
-
Security Leadership: Oversee security measures, incident responses, and network security enhancements, including Fortinet solutions.
-
Certifications: CRISC, CISA, CISM, CISSP, ISO 27001 Lead Auditor, ISO 27005 Risk Manager or equivalent.
-
Regulatory & Compliance: Strong knowledge of regulatory requirements (e.g., GDPR, ISO 27001, Data Protection Act 2018), including Data Protection Impact Assessments (DPIAs) and familiarity with frameworks such as Cyber Essentials or ISO 27005.
-
Technical Skills: Proficiency with Microsoft 365, Intune, VMware, and Fortinet technologies.
Experience:
-
Proven experience in IT security, risk management, and compliance.
-
Incident response planning experience, including cybersecurity breaches and data loss.
-
Experience working in similar roles, ideally within the healthcare sector.
-
Salary: £50k – £60k.
-
Professional growth and training.
-
Flexible hybrid working model after six months.
Contact Detail:
Iris Care Group Recruiting Team