PCI DSS, Compliance, Security Officer, Risk
A leading brand in the North West is seeking an experienced IT Security Officer on a 6month contract with a need to start in the next 2-3weeks maximum.
To be successful you will have a background in Information Security with experience implementing information and IT security for physical and electronic information. This includes the operational leadership for compliance to PCI DSS, Data Protection Act 1988 and other directives (e.g. ePrivacy Directive) covering getting compliant and staying compliant. The role will also include the implementation of the Information Security policies ensured by the Information Security Manager including training and awareness of all stakeholders.
You will also implement the operational governance across Information Security covering support in security relevant incidents, ICO requests, DDoS attack replies, IT security architecture/implementation adaptations, etc. The management of the IT risks is part of this role as is the responsibility for the Disaster Recovery implementation.
Further to the above you will also hold responsibility for the following:
Run internal operational Information Security processes like ISMF (Information Security Management Forum), etc.
Define & implement process on how the business can stay compliant to all InfoSec relevant topics covering an early warning system of new regulation, changed regulation etc. (e.g. via market research, conference attendance, networking, etc.)
Develop metrics, KPIs, etc. about Information Security (in dashboard) and report on it at least monthly including data per brand, unit, etc. (e.g. information security compliance index) but on balanced scale (e.g. also training days had)
Review existing technical environment globally, propose changes, manage changes to improve IT security
Do internal and external Penetration tests and other tests (by him/herself and with external company), propose improvements, and implement
Support (any time when needed) in security incidents when invited by the Manager on Duty
Link internally with appropriate stakeholders/meetings like CAB (Change Advisory Board) via membership, etc.
Align IT risk management to the overall approach and ensure process implementation including training
This is a 6month contract with a start date of ASAP. If you are interested in being considered for this role please submit your CV for review and consideration. Rate to be confirmed, however likely to be £450-£500p/d
![]()
A leading brand in the North West is seeking an experienced IT Security Officer on a 6month contract with a need to start in the next 2-3weeks maximum.
To be successful you will have a background in Information Security with experience implementing information and IT security for physical and electronic information. This includes the operational leadership for compliance to PCI DSS, Data Protection Act 1988 and other directives (e.g. ePrivacy Directive) covering getting compliant and staying compliant. The role will also include the implementation of the Information Security policies ensured by the Information Security Manager including training and awareness of all stakeholders.
You will also implement the operational governance across Information Security covering support in security relevant incidents, ICO requests, DDoS attack replies, IT security architecture/implementation adaptations, etc. The management of the IT risks is part of this role as is the responsibility for the Disaster Recovery implementation.
Further to the above you will also hold responsibility for the following:
Run internal operational Information Security processes like ISMF (Information Security Management Forum), etc.
Define & implement process on how the business can stay compliant to all InfoSec relevant topics covering an early warning system of new regulation, changed regulation etc. (e.g. via market research, conference attendance, networking, etc.)
Develop metrics, KPIs, etc. about Information Security (in dashboard) and report on it at least monthly including data per brand, unit, etc. (e.g. information security compliance index) but on balanced scale (e.g. also training days had)
Review existing technical environment globally, propose changes, manage changes to improve IT security
Do internal and external Penetration tests and other tests (by him/herself and with external company), propose improvements, and implement
Support (any time when needed) in security incidents when invited by the Manager on Duty
Link internally with appropriate stakeholders/meetings like CAB (Change Advisory Board) via membership, etc.
Align IT risk management to the overall approach and ensure process implementation including training
This is a 6month contract with a start date of ASAP. If you are interested in being considered for this role please submit your CV for review and consideration. Rate to be confirmed, however likely to be £450-£500p/d