Information Security Officer

Team Leader & Senior IT Recruitment Consultant (Infrastructure, Networks & Security) at DGH Recruitment

DGH Recruitment is recruiting on behalf of a leading global law firm for an Information Security Officer position. The role is permanent, hybrid with 3 days per week required in the London office.

Responsibilities

• Conduct vendor risk assessments and project security risk assessments based on established methodologies and frameworks.
• Evaluate security risks associated with third‑party vendors and internal projects, considering factors such as security, privacy and compliance.
• Ensure compliance with security policies, standards and procedures in vendor relationships and project activities.
• Develop and maintain security assessment frameworks and methodologies for vendor risk assessments and project security risk assessments.
• Conduct periodic reviews and audits to ensure compliance with security policies, standards and regulatory requirements.
• Support the development and enforcement of security policies, standards and procedures related to vendor management and project security.
• Support Security audit activities conducted by Internal audit, clients and certification bodies e.g. ISO27001.
• Provide security awareness training and guidance to staff as required.

Required Skills / Experience

• Professional certifications such as CISA, CISM, CISSP or similar credentials are preferred.
• Strong knowledge of information security principles, best practices and standards (e.g. ISO 27001, NIST).
• Experience in coordinating and participating in security audits.
• Experience in conducting vendor risk assessments and project security risk assessments.

Seniority Level

Mid‑Senior level

Employment type

Full‑time

Job function

Information Technology

Industries

Legal Services and Professional Services

Location

London, England, United Kingdom