At a Glance
- Tasks: Support the Information Security Management System and assist with security risk assessments.
- Company: Join Kennedys, a forward-thinking firm committed to risk and compliance excellence.
- Benefits: Inclusive workplace, professional development opportunities, and a chance to work with cutting-edge technology.
- Other info: Dynamic team environment with a focus on career growth and innovation.
- Why this job: Make a real impact in data security and help shape the future of information governance.
- Qualifications: Knowledge of ISO27001 and cloud security principles, plus strong analytical skills.
The predicted salary is between 50000 - 65000 Β£ per year.
Kennedys is looking for a Data Risk Officer (Information Security) to join the Risk & Compliance team, supporting the Global Information Security Manager in running the Information Security Management System (ISMS), ISO 27001 compliance, cloud security governance, and cyber resilience activities. Team Kennedys Risk & Compliance team handles a wide range of partnership and risk and compliance issues for the firm and acts as an in-house legal department assisting with regulatory and professional conduct enquiries. Within this, the Data Risk Team specialises in risk to data, privacy and information as well as compliance with associated regulations and best practice globally. This includes keeping abreast of new and emerging risks associated with ever-developing technology such as AI.
Key responsibilities
- Support ISMS and ISO27001 control framework
- Assist with security risk assessments and audits
- Work with IT to define support cloud security and technology risk reviews
- Assist in cyber resilience and incident management
- Support monitoring, threat analysis, and vulnerability tracking
- Contribute to governance, reporting and training
Required experience
- Knowledge of ISO27001/ISMS or other recognized security frameworks
- Understanding of cloud security principles
- Awareness of cyber security and resilience concepts
- Strong analytical and organisational skills
- Communication skills across technical and business teams
Kennedys is an equal opportunities employer and is committed to ensuring our recruitment processes are as inclusive as possible. We expect all employees to be aware of and comply with all relevant policies and procedures within their jurisdiction, including those relating to Information Security, Data Protection and Quality Management, refer any breach promptly to Risk & Compliance and to complete all mandatory training when requested.
Data Risk Officer (Information Security) employer: Kennedys
At Kennedys, we pride ourselves on being an excellent employer, offering a dynamic work culture that fosters collaboration and innovation within our Risk & Compliance team. As a Data Risk Officer, you will benefit from comprehensive professional development opportunities, a commitment to diversity and inclusion, and the chance to work at the forefront of information security in a supportive environment that values your contributions. Our London location provides access to a vibrant city life while being part of a global firm dedicated to excellence in legal and compliance services.
