Job Description

You'll oversee risk management related to IT processes and systems, ensuring compliance with legal standards. Additionally, you'll play a key role in safeguarding the organisation's integrity and reputation concerning its use of technology.

This involves implementing robust compliance frameworks, conducting regular audits, and collaborating closely with stakeholders across various departments to address any compliance gaps or issues proactively.

Your efforts will contribute significantly to maintaining a secure and compliant IT environment, ultimately protecting the organisation from potential risks and ensuring its continued success and reputation.

Key Responsibilities

Identify, evaluate, and report on information security risks in a manner that meets compliance and regulatory requirements Develop risk management strategies to avoid potential threats or compliance violations Ensure that IT practices are in compliance with various regulatory standards such as GDPR, HIPAA, SOX, etc. Regularly audit IT processes and systems to ensure compliance Develop, implement, and maintain company policies and procedures related to IT security and compliance Lead the response to IT security incidents and provide post-event analyses to prevent future occurrences Regularly review and update the IT compliance program, adapting to new regulatory demands and evolving security threats Supporting new bid & existing clients with INFOSEC questions and questionnaires & reviews of security contractual security schedules

Professional and Personal Competencies/Qualifications

Background or Education in Cybersecurity, Law, Business, or a
related field Experience in performing IT risk assessments, IT control
implementation, testing and audit procedures Strong knowledge of IT governance and operations Familiarity with industry compliance standards and regulations
(e.g., GDPR, HIPAA, SOX, ITIL, NIST and ISO standards) Excellent analytical and problem-solving skills Strong communication and presentation skills

The Company

ISS is a world-leading workplace and facility management company, connecting people and places to make the world work better. Working with customers day by day, side by side, we understand every aspect of the user experience.

Through a unique combination of intelligent solutions, high standards and people who care, to help our customers achieve their purpose, whether it’s hospitals healing patients, businesses producing the next great innovation, or airports bringing passengers home to their families. ISS is committed to doing business the right way, taking its corporate responsibility very seriously. Our passion is people.

We offer you a challenging and exciting career in an organisation with people at its heart. In ISS, everyone has the opportunity to develop, grow and make a difference.

ISS is proud to be a diverse and inclusive employer.

ISS welcomes all applicants regardless of age, disability, gender identity or gender reassignment, marital or civil partnership status, pregnancy or maternity, race (which includes race, colour, nationality, ethnic or national origin and caste) religion or belief, sex, sexual orientation or educational background

Our passion for inclusivity and diversity makes ISS a more creative, productive and happy place to work.