Information Security Consultant

As our Information Security Consultant, you'll play a pivotal role in providing subject matter expertise to projects to ensure they have security controls included by design.

You'll also be responsible for assisting in the management of Information Security risks in line with ISO27001. This includes ensuring controls are in place to prevent/minimise threats such as security breaches, computer viruses or attacks by cyber criminals.

You'll have depth of knowledge in information security, with an excellent understanding of the technical side, having very good experience of compliance such as ISO27001, NIST, PCI & CQUEST requirements.,

• Engagement with projects to provide advice, guidance and non-functional requirements to ensure security is being built in by design.


• Support and execute all group-wide Assurance tasks, initiatives and assignments, including monitoring the assurance inbox and responding to queries.


• Assist in the ongoing program of information security assurance covering all aspects of ISO27001 and the controls set out in the Society.


• Support the management of the Information Security Management System on behalf of the Society and ensure compliance with its components.


• Support the Information Security Assurance Manager in working with information security operations to maintain acceptable levels of control and risk throughout the Society.


• Carry out assurance reviews in line with the schedules calendar, producing reports, feedback and managing actions/non-conformities through to satisfactory conclusion.


• To assist in the maintenance of the Information Security (COO) Risks and Controls register and work closely with other information security colleagues and carry out actions to mitigate the risks identified.


• To keep up to date with security trends, threats and control measures and recommend new solutions and initiatives that will enhance the protection of the Society's assets and data.


• Identify risks and ensure these are presented in accordance with procedures and are given the appropriate level of attention.


• Conducting third party supplier reviews.


• Work closely with key stakeholders including Risk, Audit, Technology and Information Security Operations to assist and provide input to ensure that Society policies and procedures for Information/Cyber Security Operations are effective and adhered to. To be proactive in making recommendations for updates to policies and procedures as required
  
  You'll have strong, demonstrable experience in an Information Security role, ideally within a Financial Services led environment or equivalent highly regulated industry. You'll ideally have a formal qualification in an Information Security discipline, e.g. CISM or equivalent significant experience, as well as experience of ISO27001 audits, NIST audits or similar., A strong technical understanding and background


• Full UK driving license


• Excellent interpersonal, written and verbal communication skills and the ability to work well with people at every level.


• Ability to work with autonomy, flexibility, be organised and able to work under pressure.


• Strong relationship management and influencing skills.


• Attention to detail to ensure accurate assessment and management of risk.


• Strong analytical skillset.


• A good level of understanding on general IT security concepts and principles.


• Ability to effectively prioritise situations requiring urgent attention.


• Ability to work as a team and on own initiative to think 'outside of the box' and go the extra mile.


• Pro-activity and self-motivated with the proven ability to drive results and provide excellent customer services to all levels of the organisation.


• High level of motivation to see success delivered through own personal efforts and those around them.


Where you will work

Our aim is to keep the great balance we have achieved with hybrid working. The successful candidate would therefore be willing to work remotely and be able to work from Cumberland House, Carlisle as and when required.

Working at the Cumberland, you become part of something special. We're a Mutual organisation, committed to improving the lives of our colleagues, customers, and community. Our values are incredibly important to us.

We're on an exciting transformational journey with our people firmly at the forefront of our plans. If you want to work for a team integral in helping to drive cultural change, a team where you can bring your whole self to work bringing your energy and creativity to make a positive difference, then this is the job for you., We're here to create a banking experience that's kinder to people and planet.

Unlike banks, we don't have public or private shareholders which means we can invest 100% of our profits back into our business. As a result, our business is purpose-led, financially strong, socially responsible and always focused on our people, planet and communities.


• Salary - £65,000 to £75,000 p.a. depending on skills and experience.


• Holidays - 25 days holiday plus public holidays and the opportunity to buy and sell up to 3 days.


• Learning and Development opportunities - We want you to grow in your role. We'll work together to support your personal and professional development.


• Hybrid Working - the tools and equipment you need to be able to work from home when you need to, depending on your role.


• Health and Wellbeing - a calendar of events and activities throughout the year, Mental Health & Wellbeing champions, and Cycle to Work scheme.


• Community Day - We offer our people an extra paid day off every year to help local charities and community organisations., Competitive Salary


We will offer you a competitive basic salary for your role, which is reviewed every year.

Learning & Development

We want you to grow in your role. We'll work together to support your personal and professional development.

Holidays

Flexibility to buy and sell up to two holiday days per year, plus extra holiday after 5 years.

Family Friendly

We pay competitive maternity, paternity and adoption leave.

Flexible Working

We can provide the tools and equipment you need to be able to work flexibly or from home when you need to, depending on your role.

Pension Scheme

If you're eligible, we'll enroll you into our competitive company pension scheme.

Health & Wellbeing

We have a calendar of events and activities throughout the year, Mental Health & Wellbeing champions and Cycle to Work scheme.

Community Day

We offer our people an extra paid day off every year to help out local charities and community organisations.

Social

We hold regular social events, from annual staples like our Christmas party and quiz, to smaller get-togethers such as walks and shopping trips.