Information Security and Data Privacy Manager

This vacancy is now closed

Department
ISDP
Division
Group IT
Location
Oxford - Central
Reference number
19399

About us

Oxford University Press (the Press) is a department of the University of Oxford which furthers the University’s objective of excellence in research, scholarship, and education by publishing worldwide.  

Group IT is a central function headed up by the Chief Information Officer, providing technology services globally across the Press.


About the role

Reporting to the Chief Information Security and Data Privacy Officer, this management role will provide direction and ownership of information security and data privacy risk management in relation to people, process and technology across the Press. The job holder will be accountable for implementation of security governance and auditing throughout the Press.

Key accountabilities for this role include:

  • Support the Chief Information Security and Data Privacy Officer in the implementation of the information security and data privacy strategy and risk management framework to ensure that information assets across the Press are used, managed and protected in accordance with applicable legislative and regulatory requirements.
  • Support the Chief Information Security and Data Privacy Officer in the development implementation and maintenance of appropriate information security and privacy policies, processes and other resources to protect and maintain data and systems in accordance with applicable legislative and regulatory requirements.
  • Raise awareness across OUP of the importance of information security and data privacy through the creation and delivery of appropriate training and other awareness initiatives, to ensure the proper implementation of and adherence to Press strategy and policies, both by staff and relevant third parties.
  • Undertake due diligence and compliance monitoring of relevant third parties to ensure that the Press' information security and data privacy requirements are complied with.
  • Provide relevant information to allow performance against identified objectives to be monitored, measured, and reported on to the Information Security and Data Privacy Steering Committee and other key stakeholders as needed.
  • Support the incident response mechanism to allow the Press to respond to information security incidents in a timely, proportionate and effective manner and to monitor and report on any such incidents.
  • Work closely with Group and Divisional IT teams to ensure newly acquired or developed assets or technology undergo a business and privacy impact assessment to identify relevant risks to ensure that all relevant information security and data privacy considerations have been taken into account in accordance with Press policy.
  • Deliver proactive first line business partnering support to the Press globally on information security and data privacy matters including the implementation of and adherence to Press strategy and policies to ensure the minimisation of risk, compliance with the law and advancement where possible of the business interest.
  • Remain informed on information security and, with the support of the Data Privacy Manager, privacy laws, trends and issues, including current and emerging technologies, legislation and best practices in order to advise and educate stakeholders on their relevance and impact, recommending and implementing changes to Press policy and/or practice where appropriate.

About you

As the successful candidate you must be able to clearly demonstrate:

  • Professional certification such as CISSP, CISM, CISA or other information security credentials
  • Very Strong working knowledge of information security standards and best practice such as ISO 27001
  • In depth knowledge of privacy laws and standards
  • In depth knowledge of PCI DSS
  • Very strong experience of information Security consultancy in a commercial environment
  • In depth knowledge of global technological trends and developments in information security and risk management
  • Strong Communication Skills
  • Self-Starter and the ability to work on own initiative
  • Strong Influencing Skills
  • Ability to build relationships at all levels
  • Willingness to travel

This is a global opportunity; the successful candidate will based in any Oxford but must be willing to travel internationally.


Salary
Competitive salary depending on skills and experience

Recruiter
Claire Rees

Contact email
(for queries only - click 'Apply' below to apply)
claire.rees@oup.com

Closing date
08/08/2016
Job alerts