Information Security Officer
- Full-time
Company Description
Maxymiser provides the most powerful solution for optimising the customer experience through testing and personalisation. Our solution makes it possible for enterprise organisations to drive higher conversion rates and generate unparalleled insights about their customers. Named as a leader in online testing by Forrester Research, Maxymiser quickly delivers measurable results through a unified solution of A/B and multivariate testing, segmentation, behavioural targeting and product recommendations for web, mobile and social channels.
Maxymiser’s solution is used by hundreds of companies internationally, including Alaska Airlines, Avis, Epson, Harry and David, HSBC, InterContinental Hotel Group, Sovereign Bank, Teleflora, Virgin Media and Wyndham Hotels. Founded in 2006, Maxymiser has experienced a year on year growth rate of 200%+ over the last 3 years. Headquartered in New York, we have offices in London, Düsseldorf and Warsaw, as well as a global network of marketing and technology partners.
Job Description
Position title: Information Security Officer
Location: London, UK
At Maxymiser information security is regarded as the highest priority function. ISO 27001:2005 security standards combined with PCI DSS requirements are used to ensure strict information security controls are in place and information is protected from unauthorised access and misuse.
We are seeking a Security Officer that will maintain and enhance security standards across the business
The Security Officer will actively work with all internal teams including sales, finance, HR, client services, product, and engineering to ensure the highest security requirements are implemented and maintained.
Your primary responsibilities will be to lead the security programme for Maxymiser, maintain ISO 27001 certification and ensure security gaps are identified and remediation plans are put in place.
A Security Certification such as CISA/CISSP as well as experience in leading/implementing security standards such as ISO 27001, SSAE-16 Type 2 or PCI DSS are pre-requisites for this position.
Responsibilities:
Maintain and enhance company security according to ISO27001 standard, maintaining ISO 27001 accreditation
Provide security expertise to sales and client services teams during RFP/RFQ processes
Security training programme management: development, implementation and maintenance
Security policies development and implementation including IRP/DR/BCP/Data Security/Application Development Security/Systems Security/Physical Security/Access Control/Acceptable use/HR Security etc
Perform regular internal security audits
Security issues remediation planning and implementation
Qualifications
Qualifications/Experience:
Programme management experience is a must
PCI DSS/SSAE Type 2/ISO27001 implementation experience is a must
Excellent knowledge of data protection legislation is a must
CISA/CISSP certification is highly desirable
Senior stakeholder management
Excellent communication skills
Fluency in German and/or Russian languages is a plus but not essential
Additional Information
For more information, please visit www.maxymiser.com
All applicants should be eligible to work in the UK to be considered.We would love to hear from you.