To be responsible for the management and maintenance of our Information Security ISO certificate and Business Continuity frameworks, creating, implementing and maintaining the necessary policies and procedures required to protect Weightmans’ clients, employees and other stakeholders’ from the loss, misuse, corruption or unacceptable disclosure of information andor serious business continuity incidents.
-
Responsible for the Information Security and Business Continuity (IS&BC) data and information frameworks, creating the necessary policies, procedures and controls.
-
Responsible for short and long term IS&BC planning, ensuring they are effectively implemented to the required standards
-
Retain and develop the firms ISO certification status
-
Responsible for managing all non conformances from ISO audits
-
Schedule & Chair the Information Security Management & Business Continuity Steering Group
-
Manage, log and report on IS&BC breachesincidents, developing and implementing solutions to minimise future repeats
-
Scope, schedule and audit our current IS&BC processes, identifying potential risks and report on exposures and make recommendations for improvement
-
Responsible for conducting audits of the Information Security and Business Continuity provisions of Weightmans’ suppliers
-
Manage the Business Continuity process if it were to be invoked
-
Manage testing of the Business Continuity Plan
-
Liaise with key stakeholders to gain an understanding of their IS&BC requirements
-
Perform regular IS&BC risk assessments and apply and associated treatments
-
Create and deliver IS&BC guidelines, materials and training events to engender a best practice approach
-
Act as the ‘go-to’ person for IS&BC queries
-
Represent IS&BC at relevant meetings and committees
-
Represent the firm as the IS&BC subject matter expert (SME) at client functions
-
Advise on, and provide management information on, IS&BC for use in tenders, client relationship management initiatives, audits etc.
-
Keep abreast of changes in IS&BC regulations and best practice, actively maintaining your specialist knowledge
-
Ensure the Firm is operating in line with relevant industry regulations (ie ISO standards)
-
Ensure the firm retains its current and future IS&BC ISO certificates
-
Manage contractors and suppliers involved in our IS&BC processes
-
Responsible for cost centre budgeting and spend for IS&BC
-
Manage and chair the IS and BC Management Group and provide periodic management reports for the Operations Director and Board
-
Work towards and implement the ISO/IEC 22301:2012 Business Continuity standard to successful certification.
-
Comply with relevant policies and procedures
-
Work in accordance with Weightmans’ values
This list is not intended to be exhaustive and you will be expected to perform other duties and have other responsibilities that fall within the wider remit of the role.