Job Title: Information Technology Security Officer
The Northern Ireland Assembly Commission is seeking a highly skilled and specialised Information Technology Security Officer to lead the development, implementation, and maintenance of its information security policies and procedures.
About the Role:
* Develop, implement, and monitor a comprehensive technical information security program to protect information assets.
* Lead and define security best practices and align them with organisational goals and compliance requirements.
* Conduct regular risk assessments to identify vulnerabilities and develop strategies for risk mitigation.
* Take the lead in assessing risks, interpreting complex data, and making informed decisions on security measures.
Main Duties and Responsibilities:
1. Strategic Work alongside the Head of IT to develop the Assembly Commission's IT vision, strategy, and accompanying action plan.
2. Identify future challenges in the IT landscape and develop relevant mitigation strategies.
3. Operational Information Security Management Lead the team supporting the daily operations of security systems.
4. Compliance and Regulatory Alignment Manage and monitor compliance with relevant regulations and industry standards.
5. Security Operations Lead the team supporting the daily operations of security systems.
Requirements:
* Possess at least a Bachelor's (or higher) Degree in Computing or other discipline relevant to Information Systems / Information Technology, Cyber Security or Network Administration.
* Have a minimum of 3 years' experience in each of the areas described below: Working across a multi-discipline technology stack; Cloud environments; Firewalls; Intrusion Detection / Prevention Systems; Security Information & Event Management tools (SIEM); Data Loss Prevention (DLP); Endpoint Management; Networking, Protocols & Vulnerability Management; Encryption & Identity Management; Policy creation; and, Developing and delivering Cyber Security related Training.
Preferred Qualifications:
* Professional certification that aligns with the responsibilities of the role such as Certified Information Systems Security Professional; CISSP, Certified Cloud Security Professional (CCSP).