Information Security Specialist (m / w / d)

The Specialist reports to the Senior Information Security Expert and assists the UK Information Security team with the day-to-day running of all information security-related activities and maintenance of our critical certifications. Our team contributes to developing and maintaining security standards, policies, and procedures, ensuring the company meets its data security obligations. Activities also include coordination of new supplier assurance, contract reviews, preparation of awareness material and security guidance for distribution throughout the UK business.,

• Maintain and contribute to documentation, standards, guidelines, procedures and any other material required to facilitate compliance against the KN Policy Framework


• Perform assessments with the assistance of the Information Security Team to pre-empt, mitigate, and swiftly respond to any audit findings that require action


• Be the first point of contact for the information security team and maintain information security-related incident/change tickets on relevant systems


• Maintain the existing Joiners, Movers and Leavers review process from an information security perspective and support the business in ensuring JML is tracked and access to KN systems adheres to the least privilege principle.


• Assist the Senior Information Security Expert in the day-to-day management of the KN ISMS risk register.


• Working with system owners, business owners or other relevant contacts to record non-conformities and conduct root cause analysis


• Coordinate, update and track information security tickets, actions, and tasks


• Document and manage KPIs, updates and meeting minutes


• Offer procedural guidance and input personnel who are responsible for one or more information security systems, including system administrators, field engineers and account operators.


• Maintain and implement new services and solutions, or coordinate activities, as directed by the Senior Information Security Expert
  
  Demonstrable experience in IT, ideally from an IT background


• Experience in operating and maintaining a schedule of works


• Proficient in Microsoft Excel, Word, SharePoint


• Awareness of ISO 27001/27002, Cyber Essentials, or equivalent


• Extremely organised, proactive with strong analytical skills


• A positive, "can do" attitude and a self-starter who can work under their own initiative in an ever-changing environment.


• Excellent communication skills, both verbal and written - an ability to effectively communicate technical information to a non-technical audience