The Information Technology Security Officer will provide a professional, responsive service to assist our client and their Senior Management in identifying and mitigating security risks, which could seriously affect the operation of the Councils business systems and the confidentiality of both the Councils and clients/customers information. This requires strong communication and management participation with all the Councils service areas, to ensure a process of continuous review and improvement in order to provide the Council with an efficient secure environment for all its operational systems.
ESSENTIAL SKILLS:
Ability to develop and review IT Security policies and procedures and related guidance. Experience of monitoring compliance relating to IT security directives including GCSx and PCI. Assessment of IT security related risks and security breaches. Experience of responding to Freedom of Information requests. Ability to create educational courses related to Information Security.
Develop, monitor and provide full IT security risk assessment advice, along with exception reports and strategies to appropriate personnel, with regards the Council’s Internet/Intranet systems and "Information Technology Security & Internet/E-mail Policy".Ensure that the Council is compliant with central Government directives and industry standards e.g. Government Connect, PCIDSS.To respond to Freedom of information requests with statutory response times.Provide Senior Management and full Council advice on appropriate legislation that may impact on the Council’s Information Security and Risk business operations.Devise, organise and provide appropriate training and advice for all Council employees, agents and clients/customers where appropriate, concerning Information Security and Internet policies along with other related Council policies and Government legislation.Establish relationships with both appropriate LBR/ICT Services staff and external consultants in order to establish constant and specialist monitoring and compliance.Investigate and report to senior management and provide best advice on 'appropriate course of action’ for suspected breaches of IT security and the Council’s "Information Technology Security & Internet/E-mail Policy".Be responsible for monitoring and maintaining appropriate Council policy and legislative compliance with regards to recording devices e.g. telephone monitoring/recording equipment etc.Design and implement the Council’s Business Continuity Planning Systems/s for IT to ensure that all areas of the Council integrate with the IT Disaster Recovery procedures and systems, and to ensure that all the London Borough of Redbridge systems are protected.the responsibilities of this post is the ability to respond flexibly, positively and successfully to the ever changing pressures which local authorities face. This job description is a guide to the level and range of responsibilities the post holder will be expected to undertake initially. It is neither exhaustive nor inclusive and will be changed from time to time to meet the changing circumstances and demands. It will not form part of the post holder’s contract of employment.
EmoticonEmoticon