IT Security Advisor - Grangemouth

All - IT
Ref: 658 Date Posted: Friday 12 Oct 2018
LinkedIn ShareShare
More

IT Security Advisor
 

INEOS the name for Chemicals

This is an exciting time to join us at our Grangemouth site, INEOS’ largest manufacturing asset. Having committed to significant investment over the next few years, we now require an IT Security Advisor with relevant experience to play a key role in the delivery and support of this growth in our business.

Context for the role:

To advise and assist the IT Infrastructure Manager on all aspects of IT security, including  an in-depth review and audit of IT Security, deliver key projects in relation to Information Security, define and  implement standards and processes across the Grangemouth Site that align with group wide policies and that can be managed and maintained on an ongoing basis.

Principle Accountabilities:

  • Perform a full IT Security review across the environment - Server, Network, Application, Client Machines, Processes and Procedures

  • Create a plan to proactively reduce the risk, likelihood and impact of any growing cyber threats or attack; To ensure effective policies are in place, embedded and aligned to the IT Security Group strategy - Review the existing IT Security Policy and monitor internal and external policy compliance

  • Identify vulnerabilities and threats and analyse risks against them

  • Recommend corrective actions and document results.

  • Ensure effective monitor of all operations and infrastructure, reviewing alerts and logs in order to ensure the integrity of the organisation’s digital security footprint

  • Maintain all security tools and technology

  • Monitor regulation compliance (e.g. GDPR)

  • Work with different departments in the organisation to identify and reduce risk

  • Work with the Infrastructure and Application teams to evaluate existing and new technology that has a security element attached to it

  • Audit policies and controls continuously and create an ongoing process for maintaining this process

  • Through regular meetings and communication ensure cybersecurity remains a priority across the organisational

  • Produce a security incident response process - Ensure that this process is tested throughout the organisation and that everyone knows their duties during such an incident

  • Ensure that backup and recovery policies, plans, procedures, testing and remediation is maintained and adequate across the business

Skills & Qualifications:

  • Extensive experience and knowledge of IT Governance & Cyber Security

  • International regulations for example GDPR, NIS

  • Experience of successfully Implementing, supporting and maintaining information security standards

  • Experience in information security management and/or related functions (such as IT audit and IT Risk Management)

  • Excellent knowledge of Microsoft Cloud, Server, Middleware and Desktop technologies;

  • Knowledge and experience of internal information security auditing

  • Experience of both small and large-scale enterprise applications

  • Developing procedures, policies and controls with demonstrable change to business culture whilst balancing operational requirements.

Desirable:

  • Background in technical IT roles such as IT architecture, development or operations, with a clear and abiding interest in information security

  • Technical understanding of mainstream computing and networking platforms

  • Degree in Computer Science or related Industry recognised accreditation such as CISSP or CISM

  • Ability to mentor and support team members providing knowledge transfer as required.

The candidate must be able to drive and if required travel to remote sites

Please apply and submit your CV