Information Security Compliance Manager

Job Category:
Job Type:
Level of IT Experience:
5-10 Years
Central Dublin
Not Specified
Salary Description:
Competitive salary offered
Job Ref:

Location: Dublin
Role Purpose
The IS Compliance Manager will report to the Head of Audit, Risk and Compliance, Mediahuis Ireland (ARC). The role will have a particular emphasis on: risk and compliance management; policy, procedure, standard and guideline development; and security training and awareness, as these categories relate to information assets. This position assists in building and managing an effective, comprehensive security program that reduces the risk to information assets, and supports compliance with legal and business requirements in support of the Groups mission statement and compliance obligations. Close liaison with the Group CISO is a feature of the role with an expectation and opportunity to contribute at Group level.
Role Responsibilities (Overview)

Contribute to Risk and Compliance Management process, leading in IS Security disciplines
Liaise with the Group CISO
Perform information risk and compliance assessments as needed for the Company, while working closely with the Compliance Manager in ARC
Manage the remediation activities from assessments, audit findings and compliance related issues
Collect compliance and evidentiary reports and review for accuracy and completeness.
Conduct security audits, reviews and security risk assessments, and makes recommendations for security improvements in existing application, network, technology, and processes, or to achieve compliance with applicable regulations
Security audits include GDPR mandated personal data reviews in house and with third parties
Coordinate external audit activities (example: annual Finance driven technology audit, vulnerability/penetration testing) including authoring control narratives, test procedures, and testing/validation of controls
Lead Risk and Compliance projects by coordinating activities and timetables with business units and other resources
Maintain the schedule of activities required for compliance in various areas of the Group and assist in the completion of these activities
Evaluate existing controls from a risk and compliance perspective, proposing changes or additional controls as appropriate
Support, implement, maintain, and keep current information security policies, standards, and procedures
Perform gap analysis on existing policies and procedures relating to information security, acceptable use, security development standards, and other applicable areas based on risks, current threats, and industry best practices
Propose additional policies, or changes to existing policies, based on identified gaps
Oversee Security Awareness and Training

Experience & Qualifications (Minimum Experience & Essential Knowledge)

Bachelor's degree (IT Related, Assessment, Analysis Field related)
5 years assessment experience
Strong Communication Skills and ability to work within Production focused teams
Organisational skills and keen attention to detail
Ideally recent experience of auditing within Technology Groups

Technical & Non-technical
Business Analysis & Modelling
Familiarity with EU Compliance Laws including but not limited to GDPR DP security requirements
Effective communicator
Good listener
Customer focused
Critical analysis & decision making.
Creative thinking
Problem solving
Organisational awareness
Planning & Organising
Detail Oriented
Effective Collaboration with cross-functional teams

Contact Details:
Contact: Contact

You may return to your current search results by clicking here.

Latest Job Listings