Compliance & Information Security Officer

Drive and implement security policy and governance programmes throughout the company. Liaise with stakeholders and assist with policy setting, implementation and management of security and business good practice within the context of a rapidly expanding technology company. To apply for this role directly, please complete this online application form (no agencies)

Responsibilities:

  • Working with the COO to implement, audit and maintain information security policies and processes through the Company
  • Compliance with ISO 27001, GDPR and other security and business standards
  • Assistance with completion of client RFIs, security reviews etc
  • Risk management programme
  • Vendor management programme
  • Incident management programmes
  • Business Continuity / Disaster Recovery policy, processes and testing
  • Business Impact Assessments
  • External and Internal PEN testing
  • Staff security awareness, training and testing
  • Staff data protection responsibilities and acceptable usage management
  • Capacity planning and critical vendor dependency management
  • Management of privacy incident, disclosure and breach policies and processes
  • Internal IT system patch management and vulnerability monitoring
  • Awareness of and compliance with national and international regulations and intellectual property rights

Education and Qualifications

Essential:

  • Degree level intellect in IT related subject
  • Good A level technical subjects or equivalent

Desirable:

  • Relevant undergraduate degree or equivalent qualifications or experience

Experience

Essential:

  • Contract reviews and amendments
  • Proven experience in driving through regulatory change
  • Implemented security policies for small to medium technology companies

Desirable:

  • Experience in a VOIP Service Provider/ Telco environment
  • Experience of working in a compliance / risk department
  • Demonstrable knowledge of relevant regulations in the UK
  • A reasonable knowledge of any relevant EU legislation

Skills

Essential:

  • Technical writing and authoring
  • Excellent attention to detail
  • Excellent communication, written and presentation skills
  • Ability to drive results, solutions oriented, through a strong sense of control in changing and ambiguous situations
  • Ability to prioritise heavy workloads and be involved in key ongoing project

Desirable:

  • Databases and data security
  • Business analysis skills
  • Cloud and SaaS service expertise
  • Internal Client facing role requiring effective day-to-day communication and responsibility for delivering work to an agreed timetable.
  • Personal effectiveness including good time management and self-motivation

Personal Attributes

Essential:

  • Self-starter able to make progress with minimal supervision
  • Ability to take on and enhance existing engineering code, as opposed to requiring re-writing it
  • Ability to work within a team environment with good communication skills
  • Able to analyse and investigate problems
  • High standard of written and spoken English
  • Able to prioritise and work within tight time scales in order to meet deadlines
  • Can accept and act upon constructive criticism
  • Able to work under pressure
  • Strong work ethic / Drive
  • Confident
  • Structured in thinking and work practice

Desirable:

  • Flexible approach to work
  • Good at forming new ideas and demonstrating them to others
  • Active interest in communications and IP technologies
  • Active interest in communications and IP technologies
  • Pragmatic problem solver

Personal Circumstances

Full driving license
Live within commuting distance of East Croydon
Due to the nature of the Company’s products and services, the jobholder must on occasion be willing and available to work extra hours if the needs of the Company require it

Other

UK passport or right to work in the UK is essential for this role

Natterbox and Red Matter are equal opportunities employers

Natterbox is revolutionising the way the world works by delivering business telephony via the cloud. The sector in which we operate is dynamic and fast-growing and our innovative solutions are winning global blue-chip clients.

Our company is backed by a passionate and accomplished management team with many years of experience in cloud computing. We have a clear vision for the future and are looking for talented, high energy, like- minded individuals who share our passion to change the world.