Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Support IT projects with security duties and manage information security risks.
- Company: Join a dynamic team in Newport, South Wales focused on cyber security.
- Benefits: Competitive salary starting at £41,446, with opportunities for growth.
- Why this job: Be part of crucial IT initiatives while enhancing your skills in a supportive environment.
- Qualifications: Passion for information security and experience with cloud environments like VMWare and Azure required.
- Other info: Flexible working hours, Monday to Friday, with a focus on continuous improvement.
The predicted salary is between 41446 - 47365 £ per year.
Information Security Officer
Location: Newport, South Wales
Job Type: 37 hours Monday to Friday
Salary: Starting at £41,446 rising to £47,365
We are seeking an Information Security Officer to assist with the coordination and support of security duties across IT and Cyber project initiatives. This role is crucial in ensuring that IT projects adhere to security policies, secure architecture principles, and regulatory cyber assessment frameworks. The ideal candidate will provide expert advice and manage information security risks effectively.
Day-to-day of the role:
Support Information Security activities across all non-CAF based IT projects.
Deliver security artifact requirements for each IT Project quality gate.
Document and log security assessments, including arranging penetration tests and code reviews for ongoing and new projects.
Report on all security incidents and risks identified within IT projects.
Evaluate and coordinate tickets assigned to the security team within the IT ticketing system.
Log and manage any control defects or failures identified via the SecOps ticket tracking system.
Provide security support to other projects and ongoing programmes of work, both planned and ad hoc.
Support the review and improvement of existing systems’ security operations capabilities.
Required Skills & Qualifications:
Passionate about information security with a proactive approach to improving security posture.
Strong understanding of cloud concepts, especially hybrid cloud environments. Experience with VMWare and Microsoft Azure is essential.
Familiarity with project management methodologies such as Waterfall, Agile, and PRINCE2.
Knowledge of cyber attack modelling, endpoint detection, threat management products, and network security.
Strong commercial acumen and the ability to translate between technical and business language.
Knowledge of information security control and compliance standards such as NCSC CAF, ISO27002, IEC17789, CIS CSC, and NIST CSF.
Understanding of CSIRT and incident response processes. Experience with Microsoft Defender products and Microsoft Sentinel is advantageous.
Qualifications:
CISMP (Essential)
SC-900, AZ-900 (Essential)
CISM (Advantageous but not essential)
SC-200, SC-300, SC-400, and AZ-500 (Advantageous but not essential
Information Security Officer (Cyber Security Risk) employer: Reed
Contact Detail:
Reed Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Security Officer (Cyber Security Risk)
✨Tip Number 1
Familiarize yourself with the specific security policies and frameworks mentioned in the job description, such as NCSC CAF and ISO27002. This knowledge will not only help you understand the role better but also demonstrate your commitment to information security during discussions.
✨Tip Number 2
Gain hands-on experience with cloud environments, particularly VMWare and Microsoft Azure. Consider setting up a personal project or lab environment to practice your skills, as this practical knowledge can set you apart from other candidates.
✨Tip Number 3
Brush up on your understanding of project management methodologies like Agile and PRINCE2. Being able to speak the language of project management will help you communicate effectively with project teams and show that you can integrate security into their processes.
✨Tip Number 4
Network with professionals in the cybersecurity field, especially those who have experience in incident response and CSIRT processes. Engaging with the community can provide valuable insights and potentially lead to referrals for the position.
We think you need these skills to ace Information Security Officer (Cyber Security Risk)
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in information security, particularly with cloud environments and project management methodologies. Use keywords from the job description to demonstrate your fit for the role.
Craft a Strong Cover Letter: In your cover letter, express your passion for information security and provide specific examples of how you've improved security posture in previous roles. Mention your familiarity with the required qualifications and how they align with the company's needs.
Highlight Relevant Certifications: Clearly list your certifications such as CISMP, SC-900, and AZ-900. If you have additional advantageous certifications, mention them as well, emphasizing how they contribute to your expertise in the field.
Showcase Problem-Solving Skills: Provide examples in your application that demonstrate your ability to manage information security risks and incidents effectively. Highlight any experience with security assessments, penetration tests, or incident response processes.
How to prepare for a job interview at Reed
✨Show Your Passion for Information Security
Make sure to express your enthusiasm for information security during the interview. Share examples of how you've proactively improved security measures in previous roles, as this aligns with the company's focus on enhancing their security posture.
✨Demonstrate Your Technical Knowledge
Be prepared to discuss your understanding of cloud concepts, especially hybrid environments. Highlight your experience with VMWare and Microsoft Azure, as well as any relevant tools or methodologies you’ve used in past projects.
✨Familiarize Yourself with Relevant Standards
Brush up on information security control and compliance standards such as NCSC CAF, ISO27002, and NIST CSF. Being able to discuss these frameworks will show that you are knowledgeable and ready to handle the responsibilities of the role.
✨Prepare for Scenario-Based Questions
Expect scenario-based questions that assess your problem-solving skills in real-world situations. Think about past experiences where you managed security incidents or risks, and be ready to explain your thought process and actions taken.
