Overview
Information Security and Assurance Advisor
Leek Wootton
Permanent
Full Time
Salary (£46,674.00 – £52,389.00)
The closing date for this post is 12 noon on 7th October 2024
Those currently eligible on the redeployment register will be given prior consideration.
We are looking for a highly skilled and motivated individual to take on the role of Information Security and Assurance Advisor, working within the Information Assurance team but also offering help and support to the Cyber Security team to ensure we are meeting our national compliance obligations.
Policing holds vast amounts of data for law enforcement and operational purposes, but how that data is used and secured requires rigorous governance to ensure its retention and use is lawful, fair and proportionate and does not infringe on the rights and freedoms of individuals. In order to meet the organisation’s strategic ambitions for the use of data, we have created a new Information Assurance function with responsibility for information governance, security, records management and data protection.
The role will provide professional guidance and specialist advice with regard to information security and support our data protection compliance, ensuring that appropriate controls are identified and implemented to protect personal data and ensure the force is meeting our SYAP and CoCo requirements as well as supporting our GDPR and Data Protection Act 2018 compliance programme. You will also advise on and manage information security incidents and related governance and assurance documentation and reporting requirements.
Main Responsibilities:
To support the Warwickshire Police Information Security and Assurance programme to enable appropriate assurance and compliance processes and ensure they meet with wider mandatory information security and assurance requirements and national reporting standards. i.e. Syap
To develop, review and implement policies and best practice for the ongoing management and maintenance of information security and cyber security management. And to support the work of the Information Assurance Team and Cyber Security functions within the Force.
To implement processes and techniques to regularly assess information assets for compliance with security policies, national policing and best practice information assurance standards, legal and regulatory requirements.
To be a point of contact for information security and assurance queries.
To ensure information security audits and compliance checks are undertaken to ensure the physical and data security protection of all information systems and information assets. Ensuring compliance with information security requirements, national guidance, standards, policies, and information risk management, covering both the Force and relevant Suppliers and 3rd parties
To identify information security and assurance requirements where there are new or changed processes, information assets or activities; working with business areas and project leads to ensure that appropriate assurance is undertaken and documented.
Co-ordinate investigative and reporting action of all actual and suspected information security incidents, ensuring that action is taken to prevent reoccurrence and incident trends are monitored to inform organisational learning.
To prepare and deliver information security training, education, and awareness in relation to information security, information assurance and information risks.
To actively engage all key stakeholders, including partner agencies and third-party suppliers, sharing, storing or processing information owned by Warwickshire Police in the application of information security best practice and relevant standards, ensuring compliance with legalisation, statutory requirements, national and best practice standards Home Office legislation and statutory guidance.
To maintain awareness and up to date knowledge of all current relevant information security management and data protection legislation, methods and practices ensuring that an environment of continuous improvement, innovation and emerging best practice are evaluated.
Represent professionally and promote the reputation of Warwickshire Police at meetings and groups both internally and externally, including the development of appropriate and constructive partnerships with relevant organisations. To assist with chairing and minute taking at the Tactical Information Assurance Group.
To undertake other duties commensurate with the nature, level of responsibility and grading of this post, as required
Knowledge:
See role profile
Experience:
Experience of operational delivery of information security in a multi-site organisation.
Demonstrable experience of Public Sector Network (PSN)/Syap compliance requirements including evidenced understanding of maintaining accreditation.
Experience of developing and implementing information security and assurance policies and procedures.
Experience of undertaking internal audits and accreditation activities, working closely with ICT and other key force teams, external auditors and accreditors
Experience in facilitating and leading meetings with internal and external stakeholders at senior level.
Experience of liaising with other organisations and agencies on information security matters.
Key Skills:
See Role Profile
We want our organisation to be as diverse as the community it serves. We welcome applicants from all sections of the community.
You will be required as part of Warwickshire Police recruitment process to successfully complete vetting and credit checks.
We support the “Happy to talk flexible working” campaign, which aims to encourage uptake of flexible working for individuals, the flexible working options that may be considered for this role include;
Compressed Hours, Remote Working