Information Security Officer (Headquarters, Chelmsford)

Starting Salary: 49716.00 (pro-rata for part-time vacancies)

Part/Full Time: Full Time

Contract Type: Permanent

Working Pattern: Mon-Fri

Overview

Join Essex Police as the Forces Information Security Officer in this specialist role you will play a vital part in protecting the Forces data and technology. We’re looking for a proactive professional who can confidently manage information security risks and shape secure solutions that keep our systems secure. In this role you’ll provide expert guidance on the design, implementation and operation of security controls across all aspects of our information systems. You’ll lead by example, oversee security accreditation processes and share your knowledge through training and support. If you’re passionate about safeguarding information and influencing best practice, this is your opportunity to make a real impact in a dynamic and forward-thinking organisation.

Core Purpose

• To protect sensitive police information and systems and to provide authoritative security direction, advice and guidance to the Senior Information Risk Owner (SIRO), senior command leads and Information Asset Owners.
• Ensure compliance with legislation, national standards (e.g. ISO27001, NIST) and force policies.
• Maintain confidentiality, integrity and availability of data.
• Develop security policies, standards and guidelines appropriate to business operations, technology, national compliance and legal requirements.
• Ensure activities remain current against professional national and industry standards with respect to evolving cyber threats.
• Conduct regular audit reviews for the full range of information security control types and techniques for the purpose of good information security assurance, highlighting areas of concern and potential risk.
• Produce documentation, reports and presentations to senior business leads and, where necessary, include recommendations for appropriate mitigation action to reduce the impact of security breaches for identified risk.
• Attend Gold Group meetings to provide expertise and advice in the event of a significant incident.

Key Responsibilities

• Risk management: Identify, assess and mitigate information security risks.
• Policy & Governance: Develop, maintain and enforce security policies and procedures.
• Accreditation & Compliance: Oversee accreditation of systems including national systems and ensure change is identified and audit completed.
• Security breaches: Manage response, identify patterns of behaviour and risk. Report and implement corrective actions.
• Advice & Consultancy: Provide expert guidance to senior leaders, projects and staff.
• Monitoring & reporting: Track security measures, produce reports and escalate risk when needed.
• Collaboration: Work with IT teams, other police forces and national bodies; attend boards and working groups.

Demonstrate resilience, good time management skills, workload scheduling and ability to work independently and as part of the team with the ability to inspire and lead. Excellent communication and stakeholder engagement skills. Familiarity with secure system design and accreditation processes. Educated to degree standard or can evidence equivalent experience. 5 years of working within Information Security environment with CISSP (or equivalent) qualification. Knowledge of access control systems, security processes and frameworks (ISO27001, NIST), government policies and procedures, legislation in Information Security. High understanding and knowledge of system accreditation and auditing frameworks. Good understanding of privacy requirements and other relevant legislation and regulations. Experience with Microsoft 365 security tools and automation (e.g. Power Automate Copilot). Awareness of AI-driven security solutions. Project management and strategic planning capabilities.

Essential Skills & Knowledge

• Knowledge of emerging threats and vulnerabilities.
• Demonstrate resilience and ability to lead the team; good time management and the ability to work both independently and as part of a team.
• Excellent communication and stakeholder engagement skills.
• Familiarity with secure system design and accreditation processes.

Essential criteria

• Educated to degree standard or equivalent experience.
• 5 years of information security experience with CISSP (or equivalent) qualification.
• Knowledge of access control systems, security processes and frameworks (ISO27001, NIST), government policies and information security legislation.
• High understanding of system accreditation and auditing frameworks.

Desirable Extras

• Good understanding of privacy requirements and other relevant legislation and regulations.
• Experience with Microsoft 365 security tools and automation (e.g. Power Automate Copilot).
• Awareness of AI-driven security solutions.
• Project management and strategic planning capabilities.

For further information contact Data Assurance and Design Lead - Kerry Nicholson or Laura Robbins, Head of Information Strategy and Assurance.

Your application will be shortlisted based on the content you provide within the reason for application question in the application form. CVs, covering letters or attachments are not included in the shortlist. Within your reason for application answer please refer to any experience, skills and abilities you feel you have that will make you suitable for this role based on the role criteria stated in the job advert or job description. Please provide as much detail as possible; insufficient content may mean you do not meet the shortlisting criteria.

Note: this question is limited to 9,000 characters and counts spaces and blank lines as characters. Depending on your current vetting level and security clearances you may be required to complete additional vetting information during the recruitment process.

Kent Police and Essex Police welcome applications regardless of age, disability, gender reassignment, marriage or civil partnership status, pregnancy or maternity, race, religion or belief, sexual orientation, sex or employment status. Please let us know if you require extra support at any stage of the application process or for further information regarding this position. Please email us with the title "Application Support and Adjustments". Alternatively you can call us. We will make reasonable adjustments to the selection process, working arrangements and/or the working environment as appropriate.

If you’re not from the UK you must be a resident in the UK and have lived here continuously for the last three years. You must also be free from restrictions with indefinite leave to remain. If you’re from the UK you must have lived here continuously for the last three years. This does not apply to those serving abroad in the British Armed Forces.

Disability Confident Leader

We: Have subjected our Disability Confident self-assessment to external challenge and validation. Are taking an active leadership role in encouraging and helping other employers on their journey to becoming Disability Confident.

Diversity, Equality and Inclusion are central to the values of our organisation. We value and embrace diverse experiences, identities and abilities that each of us bring to our roles. We strive to empower everyone to bring their authentic self to work. Essex Police and Kent Police are equal opportunities employers.

Communications may be recorded for monitoring purposes.