Location: York, England
Hours: Full Time
The Information Security Engineer plays an integral role in the Information Security and Data Protection team. This team is responsible for implementing StarCompliance’s Governance, Risk and Compliance strategy. Knowledge of and compliance with standard security and privacy frameworks is paramount to this role along with solid communication, organisational and people management skills.
The Information Security Engineer shall perform, or review, technical security assessments of computing environments to identify points of vulnerability, non-compliance with established Information Assurance (IA) standards and regulations and recommend mitigation strategies. They will be responsible for designing, implementing and/or integrating IA and security systems and system components, including those for networking, computing, and enclave environments to include those with multiple enclaves, and with differing data protection/classification requirements. They will contribute to the security planning, assessment, risk analysis, risk management, certification and awareness activities for system and networking operations.