Information Security Officer

Our Benefits

City location

Private healthcare

27 days holiday

Buy or sell holidays

Bonus scheme

Pension scheme

Regular social events

£350 Christmas vouchers

Loyalty awards

Birthday off work

About the role

As an Information Security Officer at Comimfy, you will support the management, implementation, monitoring & measuring of the Commify Information Security Management Systems (ISMS) across multiple locations & territories for the Commify Group. You will work with the Commify ISMS Manager to maintain the group ISO27001 certifications held by Commify brands.

About Commify

We make business communication brilliant! We work with more than 45,000 companies, helping them to transform their mobile communication with their customers and employees. Our success is the result of hundreds of talented people pulling together to achieve a common goal. Join our team and be part of our success story. 

You will thrive in an environment of passion, integrity, ownership and innovation, where development and progression are a real focus. We’d like to think we have everything you’d expect from a benefits package, from 27 days holiday and your birthday off work, to private medical cover, dental cover and bi-monthly social events! On top of this you can expect £350 of Christmas vouchers and added extras like beer o’clock and an amazing Christmas party. 

What you’ll be doing

Supporting the Commify ISMS Manager to manage all aspects of the Information Security Management Systems (ISMS) across the Commify group. This role will involve;

  • Supporting with internal and external audits of our ISMS documentation, Commify employees and the application of our information security controls associated management systems and supporting documentation
  • Identifying and tracking internal non-conformities, the completion of corrective actions and their effectiveness. 
  • Supporting risk management activities for Information Security across all relevant areas
  • Tracking progress against agreed Information Security Objectives and other monitoring and measuring metrics that are used to track the effectiveness of our ISMS
  • Updating ISMS policies, procedures and processes where required
  • Arranging audit schedules, management reviews and ensure meeting minutes are taken
  • Developing ongoing relationships with colleagues within the business.

What we’re looking for

You will be an exceptional candidate, with a proven track record in a similar role. In particular we are looking for experience in the following areas:

  • Educated in Information Security to a recognised standard, minimum Certified Information Security Foundation (CIS-F), or a post graduate
  • Strong organisational skills, with the ability to plan effectively and re-prioritise where required to  ensure deadlines are met  
  • Excellent communication skills and the ability to ensure information security-based risks, initiatives and ongoing issues are identified and prioritised 
  • Good knowledge of the ISO27001 standard and Annex A controls
  • Knowledge of governance frameworks, how policy, procedures and processes should be implemented to ensure security standards are achieved
  • Ability to resolve identified non-conformities and collaborate with multiple teams to prepare group companies for successful ISO27001 audits
  • Flexibility to work across multiple locations throughout Europe and work with International teams where required
  • Excellent language skills, both spoken and written

It would be great if you also had:

  • Experience in an information security-based role
  • Degree in Cyber Security  
  • Certified to Certified Information Security Internal Auditor (CIS-IA), Certified Information Security Implementer (CIS-I) standards or higher
  • Experience of working with enterprise Risk Management applications
  • Experience of working for a business communications provider and/or a SaaS provider
  • Experience of working for a regulatory authority or regulated company

The next step

To apply, please send your CV to recruitment@esendex.com

Diversity

We’re committed to building a team with a variety of backgrounds, views and skills, embracing our key values. The more diverse and inclusive we are, the stronger we are as a team. We encourage applications from all candidates with the relevant skills and experience.

The legal stuff

Esendex is committed to protecting the privacy and security of your information. Personal information submitted as part of the recruitment and selection process will only be used for these purposes. We will retain information for up to 12 months, after which it will be deleted or destroyed. For full information about your rights in relation to your data, please see our full Recruitment Privacy Policy here.