Finance Manager (Opex) - Fully Qualified Permanent Theale| Hybrid (3 days per week onsite) The Finance Manager is one of two Business partners to budget owners for their overheads/operating costs, with a well-developed ability to discuss and explain financial matters with non-financial colleagues of all levels. The Finance Manager is responsible for the budgeting, accounting and effective control of overheads and operating costs, and non-operational capex. The role also encompasses specialist finance activities including payroll, and headcount reporting and analysis. What you will be doing? Responsible for managing all budgeting, reforecasting and long-term planning processes for overheads and non-operational capex. This includes engaging the Senior Leadership Team and their direct reports to agree & review activities and costs. Headcount reporting and analysis Responsibility for timely and accurate month end close and reporting for overheads and IT capex in line with timetable. Effective, insightful, and accurate reporting and review of all overheads and non-operational capex costs with budget holders to ensure effective control of spend. Balance sheet reconciliations for any balance sheet codes owned by this role Finance review and approval over payroll; liaison with outsourced payroll processing supplier Support the HR Team with Short Term Incentive Plan and Long Term Incentive Plan calculations; present results of calculations to the Senior Leadership team. Coordinate with external professional services firm, supplying appropriate information to support the calculation and submission of the annual PAYE Settlement Agreement submission Manage and calculate Provision for significant legal disputes Other ad-hoc support including employee tax compliance including liaison with external professional services suppliers. (eg, P11Ds) Ensuring optimal finance system configuration regarding workflow and coding of overheads/non-operational capex What is needed for the role? Fully Qualified (ACCA|ACA|CIMA) Minimum of 5 years PQE Advanced Excel Skills Business partnering at a senior level Strong financial & management accounting knowledge & experience Experience in budgeting/forecasting processes Understanding of operational finance process and control Desired for the role: Experience property and/or Telco industries Agresso ERP application software Relevant degree (eg business, finance, economics) Project People is acting as an Employment Agency in relation to this vacancy.
16/05/2024
Full time
Finance Manager (Opex) - Fully Qualified Permanent Theale| Hybrid (3 days per week onsite) The Finance Manager is one of two Business partners to budget owners for their overheads/operating costs, with a well-developed ability to discuss and explain financial matters with non-financial colleagues of all levels. The Finance Manager is responsible for the budgeting, accounting and effective control of overheads and operating costs, and non-operational capex. The role also encompasses specialist finance activities including payroll, and headcount reporting and analysis. What you will be doing? Responsible for managing all budgeting, reforecasting and long-term planning processes for overheads and non-operational capex. This includes engaging the Senior Leadership Team and their direct reports to agree & review activities and costs. Headcount reporting and analysis Responsibility for timely and accurate month end close and reporting for overheads and IT capex in line with timetable. Effective, insightful, and accurate reporting and review of all overheads and non-operational capex costs with budget holders to ensure effective control of spend. Balance sheet reconciliations for any balance sheet codes owned by this role Finance review and approval over payroll; liaison with outsourced payroll processing supplier Support the HR Team with Short Term Incentive Plan and Long Term Incentive Plan calculations; present results of calculations to the Senior Leadership team. Coordinate with external professional services firm, supplying appropriate information to support the calculation and submission of the annual PAYE Settlement Agreement submission Manage and calculate Provision for significant legal disputes Other ad-hoc support including employee tax compliance including liaison with external professional services suppliers. (eg, P11Ds) Ensuring optimal finance system configuration regarding workflow and coding of overheads/non-operational capex What is needed for the role? Fully Qualified (ACCA|ACA|CIMA) Minimum of 5 years PQE Advanced Excel Skills Business partnering at a senior level Strong financial & management accounting knowledge & experience Experience in budgeting/forecasting processes Understanding of operational finance process and control Desired for the role: Experience property and/or Telco industries Agresso ERP application software Relevant degree (eg business, finance, economics) Project People is acting as an Employment Agency in relation to this vacancy.
Request Technology - Craig Johnson
Chicago, Illinois
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Global Firm is currently seeking a GRC Security Risk Specialist. Candidate will work on the Governance, Risk Compliance team, leads and executes the programs within the GRC team, is a subject matter expert for Information Security (consulting to technical/non-technical management and the user community), and performs key risk management functions within the Security Governance department. Primary functions include life cycle management of client responses, Policy & Standards life cycle management, Security Vendor Risk program management, Security Awareness, Controls Assurance, and GRC platform and program management. Responsibilities: Respond to security assessments, questionnaires and audits from clients and third-party business partners in a timely manner. Document and perform assessments as needed. Technical writing for policies, standards and communications. Lead in the creation and maintenance of security policies, standards, processes guidelines and support documentation. Lead, evaluate, and supports the processes necessary to assure that Information Technology (IT) systems meet the organization's cyber security and risk requirements. Ensures appropriate treatment of risk, compliance, and assurance from internal and external perspectives. Serve as a subject matter expert for Information Security consulting to technical/non-technical management and staff. Manage and support the 3rd Party Security Vendor Risk Management program and lifec-ycle. Manage the exception request process and consult as needed. Lead the Security Awareness program. This includes road-map development, measurement, and evaluation of cyber training/education courses and methods based on instructional needs. Management and support of the GRC technology platforms. Conduct evaluations of an IT program or its individual components to determine compliance with published standards. Qualifications: Bachelor's degree or five (5) years of work experience in IT Security is required. Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred. Strong knowledge on Security frameworks and technologies such as ISO 27001, NIST, SOC, SIG is required Prior IT Security experience in the legal industry experience is preferred. Technical writing experience is required. Experience with instructional content, educational writing, and technical writing strongly preferred. Four (4) years of Information Security experience required. Those containing hands on technical experience are preferred. Three or more years of experience managing timelines and being self-directed preferred. Governance, Risk, and Compliance (GRC) tool management (Administrative and/or Engineering) is preferred. Client focus, including tact and diplomacy is required. Interview, gather, and understand content from subject-matter experts Maintain accurate records and manage client security and risk requests Ability to perform as primary Security Subject Matter Expert (SME). Ability to facilitate and lead project and vendor risk assessments with relative independence and provide guidance on secure design and operation. Ability to independently complete and assist in completing client security questionnaires and security assessments concerning the Firm s security program and controls. Demonstrate the ability to create and maintain security policy, standard, guideline and procedure documents. Demonstrate the ability to communicate effectively technical topics at an appropriate level of detail to varied audiences - including IT Subject Matter Experts, senior management and non-technical users. Communicates succinctly and effectively Strong organization and problem-solving skills required Strong project and time management skills required Strong reading comprehension skills required Strong analytical ability with excellent written and verbal communication skills required Strong PC skills with Microsoft (ie Word, Excel, PowerPoint) required Ability to work independently and as a group member is required SharePoint administration is preferred for team Intranet site management Broad awareness of and exposure to diverse security tools and their capabilities, including commercial and open-source options. Strong knowledge of risk management principles and practices. Strong knowledge of security administration and role-based security controls. Strong knowledge and use of GRC platforms. Knowledge of host and network-based anti-malware technologies. Knowledge of authentication technologies and interactions between diverse authentication platforms, both on-site and remote. Knowledge of client and server Firewalling technologies and capabilities. Knowledge of security event management (SIEM), event correlation and analysis technologies. Knowledge of data encryption technologies. Strong knowledge of Intrusion Detection and Intrusion Prevention technical capabilities. Knowledge of web filtering and email SPAM prevention techniques. Knowledge of vulnerability assessment and forensic investigations tools. Knowledge of mobile device security and Mobile Device Management solutions. Knowledge of Privileged Access Management technologies. Preferred Skills: Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred.
16/05/2024
Full time
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Global Firm is currently seeking a GRC Security Risk Specialist. Candidate will work on the Governance, Risk Compliance team, leads and executes the programs within the GRC team, is a subject matter expert for Information Security (consulting to technical/non-technical management and the user community), and performs key risk management functions within the Security Governance department. Primary functions include life cycle management of client responses, Policy & Standards life cycle management, Security Vendor Risk program management, Security Awareness, Controls Assurance, and GRC platform and program management. Responsibilities: Respond to security assessments, questionnaires and audits from clients and third-party business partners in a timely manner. Document and perform assessments as needed. Technical writing for policies, standards and communications. Lead in the creation and maintenance of security policies, standards, processes guidelines and support documentation. Lead, evaluate, and supports the processes necessary to assure that Information Technology (IT) systems meet the organization's cyber security and risk requirements. Ensures appropriate treatment of risk, compliance, and assurance from internal and external perspectives. Serve as a subject matter expert for Information Security consulting to technical/non-technical management and staff. Manage and support the 3rd Party Security Vendor Risk Management program and lifec-ycle. Manage the exception request process and consult as needed. Lead the Security Awareness program. This includes road-map development, measurement, and evaluation of cyber training/education courses and methods based on instructional needs. Management and support of the GRC technology platforms. Conduct evaluations of an IT program or its individual components to determine compliance with published standards. Qualifications: Bachelor's degree or five (5) years of work experience in IT Security is required. Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred. Strong knowledge on Security frameworks and technologies such as ISO 27001, NIST, SOC, SIG is required Prior IT Security experience in the legal industry experience is preferred. Technical writing experience is required. Experience with instructional content, educational writing, and technical writing strongly preferred. Four (4) years of Information Security experience required. Those containing hands on technical experience are preferred. Three or more years of experience managing timelines and being self-directed preferred. Governance, Risk, and Compliance (GRC) tool management (Administrative and/or Engineering) is preferred. Client focus, including tact and diplomacy is required. Interview, gather, and understand content from subject-matter experts Maintain accurate records and manage client security and risk requests Ability to perform as primary Security Subject Matter Expert (SME). Ability to facilitate and lead project and vendor risk assessments with relative independence and provide guidance on secure design and operation. Ability to independently complete and assist in completing client security questionnaires and security assessments concerning the Firm s security program and controls. Demonstrate the ability to create and maintain security policy, standard, guideline and procedure documents. Demonstrate the ability to communicate effectively technical topics at an appropriate level of detail to varied audiences - including IT Subject Matter Experts, senior management and non-technical users. Communicates succinctly and effectively Strong organization and problem-solving skills required Strong project and time management skills required Strong reading comprehension skills required Strong analytical ability with excellent written and verbal communication skills required Strong PC skills with Microsoft (ie Word, Excel, PowerPoint) required Ability to work independently and as a group member is required SharePoint administration is preferred for team Intranet site management Broad awareness of and exposure to diverse security tools and their capabilities, including commercial and open-source options. Strong knowledge of risk management principles and practices. Strong knowledge of security administration and role-based security controls. Strong knowledge and use of GRC platforms. Knowledge of host and network-based anti-malware technologies. Knowledge of authentication technologies and interactions between diverse authentication platforms, both on-site and remote. Knowledge of client and server Firewalling technologies and capabilities. Knowledge of security event management (SIEM), event correlation and analysis technologies. Knowledge of data encryption technologies. Strong knowledge of Intrusion Detection and Intrusion Prevention technical capabilities. Knowledge of web filtering and email SPAM prevention techniques. Knowledge of vulnerability assessment and forensic investigations tools. Knowledge of mobile device security and Mobile Device Management solutions. Knowledge of Privileged Access Management technologies. Preferred Skills: Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred.
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Global Firm is currently seeking a GRC Security Risk Specialist. Candidate will work on the Governance, Risk Compliance team, leads and executes the programs within the GRC team, is a subject matter expert for Information Security (consulting to technical/non-technical management and the user community), and performs key risk management functions within the Security Governance department. Primary functions include life cycle management of client responses, Policy & Standards life cycle management, Security Vendor Risk program management, Security Awareness, Controls Assurance, and GRC platform and program management. Responsibilities: Respond to security assessments, questionnaires and audits from clients and third-party business partners in a timely manner. Document and perform assessments as needed. Technical writing for policies, standards and communications. Lead in the creation and maintenance of security policies, standards, processes guidelines and support documentation. Lead, evaluate, and supports the processes necessary to assure that Information Technology (IT) systems meet the organization's cyber security and risk requirements. Ensures appropriate treatment of risk, compliance, and assurance from internal and external perspectives. Serve as a subject matter expert for Information Security consulting to technical/non-technical management and staff. Manage and support the 3rd Party Security Vendor Risk Management program and lifec-ycle. Manage the exception request process and consult as needed. Lead the Security Awareness program. This includes road-map development, measurement, and evaluation of cyber training/education courses and methods based on instructional needs. Management and support of the GRC technology platforms. Conduct evaluations of an IT program or its individual components to determine compliance with published standards. Qualifications: Bachelor's degree or five (5) years of work experience in IT Security is required. Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred. Strong knowledge on Security frameworks and technologies such as ISO 27001, NIST, SOC, SIG is required Prior IT Security experience in the legal industry experience is preferred. Technical writing experience is required. Experience with instructional content, educational writing, and technical writing strongly preferred. Four (4) years of Information Security experience required. Those containing hands on technical experience are preferred. Three or more years of experience managing timelines and being self-directed preferred. Governance, Risk, and Compliance (GRC) tool management (Administrative and/or Engineering) is preferred. Client focus, including tact and diplomacy is required. Interview, gather, and understand content from subject-matter experts Maintain accurate records and manage client security and risk requests Ability to perform as primary Security Subject Matter Expert (SME). Ability to facilitate and lead project and vendor risk assessments with relative independence and provide guidance on secure design and operation. Ability to independently complete and assist in completing client security questionnaires and security assessments concerning the Firm s security program and controls. Demonstrate the ability to create and maintain security policy, standard, guideline and procedure documents. Demonstrate the ability to communicate effectively technical topics at an appropriate level of detail to varied audiences - including IT Subject Matter Experts, senior management and non-technical users. Communicates succinctly and effectively Strong organization and problem-solving skills required Strong project and time management skills required Strong reading comprehension skills required Strong analytical ability with excellent written and verbal communication skills required Strong PC skills with Microsoft (ie Word, Excel, PowerPoint) required Ability to work independently and as a group member is required SharePoint administration is preferred for team Intranet site management Broad awareness of and exposure to diverse security tools and their capabilities, including commercial and open-source options. Strong knowledge of risk management principles and practices. Strong knowledge of security administration and role-based security controls. Strong knowledge and use of GRC platforms. Knowledge of host and network-based anti-malware technologies. Knowledge of authentication technologies and interactions between diverse authentication platforms, both on-site and remote. Knowledge of client and server Firewalling technologies and capabilities. Knowledge of security event management (SIEM), event correlation and analysis technologies. Knowledge of data encryption technologies. Strong knowledge of Intrusion Detection and Intrusion Prevention technical capabilities. Knowledge of web filtering and email SPAM prevention techniques. Knowledge of vulnerability assessment and forensic investigations tools. Knowledge of mobile device security and Mobile Device Management solutions. Knowledge of Privileged Access Management technologies. Preferred Skills: Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred.
16/05/2024
Full time
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Global Firm is currently seeking a GRC Security Risk Specialist. Candidate will work on the Governance, Risk Compliance team, leads and executes the programs within the GRC team, is a subject matter expert for Information Security (consulting to technical/non-technical management and the user community), and performs key risk management functions within the Security Governance department. Primary functions include life cycle management of client responses, Policy & Standards life cycle management, Security Vendor Risk program management, Security Awareness, Controls Assurance, and GRC platform and program management. Responsibilities: Respond to security assessments, questionnaires and audits from clients and third-party business partners in a timely manner. Document and perform assessments as needed. Technical writing for policies, standards and communications. Lead in the creation and maintenance of security policies, standards, processes guidelines and support documentation. Lead, evaluate, and supports the processes necessary to assure that Information Technology (IT) systems meet the organization's cyber security and risk requirements. Ensures appropriate treatment of risk, compliance, and assurance from internal and external perspectives. Serve as a subject matter expert for Information Security consulting to technical/non-technical management and staff. Manage and support the 3rd Party Security Vendor Risk Management program and lifec-ycle. Manage the exception request process and consult as needed. Lead the Security Awareness program. This includes road-map development, measurement, and evaluation of cyber training/education courses and methods based on instructional needs. Management and support of the GRC technology platforms. Conduct evaluations of an IT program or its individual components to determine compliance with published standards. Qualifications: Bachelor's degree or five (5) years of work experience in IT Security is required. Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred. Strong knowledge on Security frameworks and technologies such as ISO 27001, NIST, SOC, SIG is required Prior IT Security experience in the legal industry experience is preferred. Technical writing experience is required. Experience with instructional content, educational writing, and technical writing strongly preferred. Four (4) years of Information Security experience required. Those containing hands on technical experience are preferred. Three or more years of experience managing timelines and being self-directed preferred. Governance, Risk, and Compliance (GRC) tool management (Administrative and/or Engineering) is preferred. Client focus, including tact and diplomacy is required. Interview, gather, and understand content from subject-matter experts Maintain accurate records and manage client security and risk requests Ability to perform as primary Security Subject Matter Expert (SME). Ability to facilitate and lead project and vendor risk assessments with relative independence and provide guidance on secure design and operation. Ability to independently complete and assist in completing client security questionnaires and security assessments concerning the Firm s security program and controls. Demonstrate the ability to create and maintain security policy, standard, guideline and procedure documents. Demonstrate the ability to communicate effectively technical topics at an appropriate level of detail to varied audiences - including IT Subject Matter Experts, senior management and non-technical users. Communicates succinctly and effectively Strong organization and problem-solving skills required Strong project and time management skills required Strong reading comprehension skills required Strong analytical ability with excellent written and verbal communication skills required Strong PC skills with Microsoft (ie Word, Excel, PowerPoint) required Ability to work independently and as a group member is required SharePoint administration is preferred for team Intranet site management Broad awareness of and exposure to diverse security tools and their capabilities, including commercial and open-source options. Strong knowledge of risk management principles and practices. Strong knowledge of security administration and role-based security controls. Strong knowledge and use of GRC platforms. Knowledge of host and network-based anti-malware technologies. Knowledge of authentication technologies and interactions between diverse authentication platforms, both on-site and remote. Knowledge of client and server Firewalling technologies and capabilities. Knowledge of security event management (SIEM), event correlation and analysis technologies. Knowledge of data encryption technologies. Strong knowledge of Intrusion Detection and Intrusion Prevention technical capabilities. Knowledge of web filtering and email SPAM prevention techniques. Knowledge of vulnerability assessment and forensic investigations tools. Knowledge of mobile device security and Mobile Device Management solutions. Knowledge of Privileged Access Management technologies. Preferred Skills: Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred.
Power Platform Developer Bristol/Hybrid (1x a month Onsite) - up to £50,000 Excellent Benefits including Private Healthcare, 10% Bonus Opportunity A leading client in the legal sector are looking for a Power Platform Developer to join their agile Software Development department. You'll be responsible for driving forwards their use of Power Platform and related software (Power Apps, Power Automate, Power Pages etc.) in collaboration with the existing team. What is in it for me with this Power Platform Developer role? Opportunity to work with Power Platform and develop your expertise in this further, working with your manager who is an expert in this field Access to funded external training for learning and development Huge investment from the business into Power Platform technologies A genuinely progressive, friendly and positive working environment Flexible working - minimum 1 day a month in the central Bristol office (more if you would prefer!) Excellent benefits package - Private Healthcare cover, bonus of up to 10%, Holidays increasing to 30 days Day-to-Day responsibilities for the Power Platform Developer role: You will be working alongside a development team who all use Power Platform, but they need a dedicated team member to be the Power Platform pro, and push forward their use across the business! You'll be developing, configuring, and customising Power Pages, Power Automate Processes, and Power Apps Create progressive Power Platform solutions across the various stages of the SDLC You'll need 1 year + of experience in Power Platform and associated tools to be considered for this role This organisation is going through significant development of their Power Platform usage, and this Power Platform Developer role offers an excellent opportunity for someone to contribute to the current and future success of the team. Please apply directly to be considered for this Power Platform Developer role.
15/05/2024
Full time
Power Platform Developer Bristol/Hybrid (1x a month Onsite) - up to £50,000 Excellent Benefits including Private Healthcare, 10% Bonus Opportunity A leading client in the legal sector are looking for a Power Platform Developer to join their agile Software Development department. You'll be responsible for driving forwards their use of Power Platform and related software (Power Apps, Power Automate, Power Pages etc.) in collaboration with the existing team. What is in it for me with this Power Platform Developer role? Opportunity to work with Power Platform and develop your expertise in this further, working with your manager who is an expert in this field Access to funded external training for learning and development Huge investment from the business into Power Platform technologies A genuinely progressive, friendly and positive working environment Flexible working - minimum 1 day a month in the central Bristol office (more if you would prefer!) Excellent benefits package - Private Healthcare cover, bonus of up to 10%, Holidays increasing to 30 days Day-to-Day responsibilities for the Power Platform Developer role: You will be working alongside a development team who all use Power Platform, but they need a dedicated team member to be the Power Platform pro, and push forward their use across the business! You'll be developing, configuring, and customising Power Pages, Power Automate Processes, and Power Apps Create progressive Power Platform solutions across the various stages of the SDLC You'll need 1 year + of experience in Power Platform and associated tools to be considered for this role This organisation is going through significant development of their Power Platform usage, and this Power Platform Developer role offers an excellent opportunity for someone to contribute to the current and future success of the team. Please apply directly to be considered for this Power Platform Developer role.
The Information Manager will be a key figure within our Analytics department in the public sector, based in Cardiff. They will oversee data management, ensuring accuracy, compliance and utilisation of information to drive strategic decisions. Client Details Our client is a large public sector company in the transport industry. With over 1,000 employees, they are headquartered in Cardiff and committed to improving transport services across Wales. Description Transport for Wales (TfW) is the not-for-profit company driving forward the Welsh Government's vision of a high-quality, safe, integrated, affordable and accessible transport network in Wales. Our mission is to 'Keep Wales Moving' by providing customer-focused services, expert advice, and infrastructure investment. The Information Management of the IT & Digital Services Directorate will lead, shape and delivery information management and records management in TfW Enterprise Information Management System The Head of Information Management will support the development of a wider strategy within TfW by creating an Information Management strategy, standards and governance to ensure compliance with legal and regulatory requirements reflects best practice, is in line with our strategic objectives and continuous improvement. Develop and implement data management strategies and processes. Maintain data governance and compliance with GDPR. Oversee the collection, storage, and analysis of business data. Collaborate with IT team to ensure data security and solve technical issues. Prepare detailed reports for stakeholders based on data analysis. Identify and recommend new ways to streamline business processes. Ensure data accuracy and consistency across all platforms. Liaise with different departments to gather information and fulfil data requirements. Profile A successful Information Manager should have: * Strong knowledge of information protection, information security, automation, information architecture and governance principals * Excellent strategic thinking and advisory skills * Ability to collaborate effectively with cross-functional teams. * In depth understanding of industry best practices and emerging trends in information management * A thorough understanding and demonstrable experience of working on the Public Records Act and other relevant regulations * Strong knowledge on Microsoft environment on the use of Microsoft as an Enterprise Information Management System. Job Offer A competitive salary in the region of £54,000 per annum. Generous holiday entitlement. Commitment to professional development and career progression. A positive and collaborative company culture, with a focus on employee wellbeing. We strongly encourage talented individuals who believe they can meet the expectations of this role to apply. This is an excellent opportunity to grow professionally within the public sector in Cardiff.
15/05/2024
Full time
The Information Manager will be a key figure within our Analytics department in the public sector, based in Cardiff. They will oversee data management, ensuring accuracy, compliance and utilisation of information to drive strategic decisions. Client Details Our client is a large public sector company in the transport industry. With over 1,000 employees, they are headquartered in Cardiff and committed to improving transport services across Wales. Description Transport for Wales (TfW) is the not-for-profit company driving forward the Welsh Government's vision of a high-quality, safe, integrated, affordable and accessible transport network in Wales. Our mission is to 'Keep Wales Moving' by providing customer-focused services, expert advice, and infrastructure investment. The Information Management of the IT & Digital Services Directorate will lead, shape and delivery information management and records management in TfW Enterprise Information Management System The Head of Information Management will support the development of a wider strategy within TfW by creating an Information Management strategy, standards and governance to ensure compliance with legal and regulatory requirements reflects best practice, is in line with our strategic objectives and continuous improvement. Develop and implement data management strategies and processes. Maintain data governance and compliance with GDPR. Oversee the collection, storage, and analysis of business data. Collaborate with IT team to ensure data security and solve technical issues. Prepare detailed reports for stakeholders based on data analysis. Identify and recommend new ways to streamline business processes. Ensure data accuracy and consistency across all platforms. Liaise with different departments to gather information and fulfil data requirements. Profile A successful Information Manager should have: * Strong knowledge of information protection, information security, automation, information architecture and governance principals * Excellent strategic thinking and advisory skills * Ability to collaborate effectively with cross-functional teams. * In depth understanding of industry best practices and emerging trends in information management * A thorough understanding and demonstrable experience of working on the Public Records Act and other relevant regulations * Strong knowledge on Microsoft environment on the use of Microsoft as an Enterprise Information Management System. Job Offer A competitive salary in the region of £54,000 per annum. Generous holiday entitlement. Commitment to professional development and career progression. A positive and collaborative company culture, with a focus on employee wellbeing. We strongly encourage talented individuals who believe they can meet the expectations of this role to apply. This is an excellent opportunity to grow professionally within the public sector in Cardiff.
Request Technology - Craig Johnson
Chicago, Illinois
*Position is bonus eligible* Prestigious Financial Company is currently seeking an Information Data Governance and Protection Analyst. Candidate will be responsible for supporting the development and implementation of the information governance, data protection, and privacy program. This includes supporting the development of strategies, policies, procedures, and controls related to the governance and protection of information throughout its life cycle. In addition, the role will work with stakeholders to define the information governance, data protection, and privacy requirements; will facilitate compliance with the identified requirements to control risk; will represent the program to internal and external stakeholders; and will support the development and implementation of training and awareness programs. This role will focus on compliance with applicable regulatory and legal rules and requirements (ie SEC-Regulation SCI, CFTC-System Safeguards, etc.) as they relate to information including support of regulatory exam and Internal Audit remediation planning, tracking, and mitigation. Responsibilities: Work with appropriate stakeholders and across the organization to create a culture that manages information as an enterprise asset Implementation of the information governance, data protection, and privacy program including the development of policies, procedures, and job aids Identification, implementation, and use of technologies to support program objectives and classification standards Execution of controls and risk assessments (eg, third-party risk, privacy, data protection) Responsible in performing the privacy impact assessment on data incidents and working with relevant stakeholders like Security Services and Legal to help closing the incident. Creation and execution of strategies to identify information across the organization and throughout its life cycle Preparation of program for regulatory and internal audits/examinations and timely remediation of any findings Use of technology/tools to track projects, manage deliverables and create reporting that support the program and its objectives Support of compliance assessments for information governance, data protection, and privacy including development of controls to measure risk Development and maintenance of the organization's Records and Information Management (RIM) program, ensuring information across all media and formats is properly retained and disposed including remediation of Legacy information Ensure retention, disposition, protection, and classification are addressed in new applications, platforms, and systems Collaborate with internal and external stakeholders to implement information governance, data protection, and privacy policies and requirements Support and develop training and awareness programs for information governance, data protection, and privacy. Identify trends in privacy and regulatory requirements, compliance enforcement, and action the necessary changes in the program. Qualifications: Strong interest in understanding and solving data challenges with experience in information governance, data protection, and privacy policy Knowledge of and work experience with enterprise systems, networks, databases, and other technical domains Strong attention to detail, customer orientation, communication, and presentation skills including the ability to listen and quickly translate business needs into solutions and build effective working relationships Strong experience in building the capabilities for auto data classification, data security and data protection. Experience with classification standard definitions and settings Experience with Privacy requirements and work with personal information and its protection Strong strategic thinking, problem solving, and analytic skills Utilize metrics as means to improve performance Ability to adapt to change in emerging environments and work across multiple areas Experience in developing policies and procedures Experience in project management, project execution, and managing multiple priorities in a timeline driven environment Experience working in a highly regulated environment including an understanding of audit and compliance requirements Office 365 (Word, Excel, PowerPoint) Experience with systems supporting Compliance, Risk, Audit, Privacy, and Management such as ServiceNow, Archer, etc. Project/Program Management Business Intelligence tool experience Bachelor's degree or higher in information management, information systems, law, computer science or BA/BS in another discipline with equivalent experience Experience in the financial services industry Certifications Preferred: Certifications in Information, Data, Privacy Records or Security such as: Certified Information Privacy Professional (CIPP), Certified Information Privacy Management (CIPM), Certified Records Manager (CRM), and/or Certified Information Privacy Technologist (CIPT), Certified Information Systems Security Professional (CISSP), Information Governance Professional (IGP), Certified Information Security Manager (CISM) and Certified Information Systems Auditor (CISA)
14/05/2024
Full time
*Position is bonus eligible* Prestigious Financial Company is currently seeking an Information Data Governance and Protection Analyst. Candidate will be responsible for supporting the development and implementation of the information governance, data protection, and privacy program. This includes supporting the development of strategies, policies, procedures, and controls related to the governance and protection of information throughout its life cycle. In addition, the role will work with stakeholders to define the information governance, data protection, and privacy requirements; will facilitate compliance with the identified requirements to control risk; will represent the program to internal and external stakeholders; and will support the development and implementation of training and awareness programs. This role will focus on compliance with applicable regulatory and legal rules and requirements (ie SEC-Regulation SCI, CFTC-System Safeguards, etc.) as they relate to information including support of regulatory exam and Internal Audit remediation planning, tracking, and mitigation. Responsibilities: Work with appropriate stakeholders and across the organization to create a culture that manages information as an enterprise asset Implementation of the information governance, data protection, and privacy program including the development of policies, procedures, and job aids Identification, implementation, and use of technologies to support program objectives and classification standards Execution of controls and risk assessments (eg, third-party risk, privacy, data protection) Responsible in performing the privacy impact assessment on data incidents and working with relevant stakeholders like Security Services and Legal to help closing the incident. Creation and execution of strategies to identify information across the organization and throughout its life cycle Preparation of program for regulatory and internal audits/examinations and timely remediation of any findings Use of technology/tools to track projects, manage deliverables and create reporting that support the program and its objectives Support of compliance assessments for information governance, data protection, and privacy including development of controls to measure risk Development and maintenance of the organization's Records and Information Management (RIM) program, ensuring information across all media and formats is properly retained and disposed including remediation of Legacy information Ensure retention, disposition, protection, and classification are addressed in new applications, platforms, and systems Collaborate with internal and external stakeholders to implement information governance, data protection, and privacy policies and requirements Support and develop training and awareness programs for information governance, data protection, and privacy. Identify trends in privacy and regulatory requirements, compliance enforcement, and action the necessary changes in the program. Qualifications: Strong interest in understanding and solving data challenges with experience in information governance, data protection, and privacy policy Knowledge of and work experience with enterprise systems, networks, databases, and other technical domains Strong attention to detail, customer orientation, communication, and presentation skills including the ability to listen and quickly translate business needs into solutions and build effective working relationships Strong experience in building the capabilities for auto data classification, data security and data protection. Experience with classification standard definitions and settings Experience with Privacy requirements and work with personal information and its protection Strong strategic thinking, problem solving, and analytic skills Utilize metrics as means to improve performance Ability to adapt to change in emerging environments and work across multiple areas Experience in developing policies and procedures Experience in project management, project execution, and managing multiple priorities in a timeline driven environment Experience working in a highly regulated environment including an understanding of audit and compliance requirements Office 365 (Word, Excel, PowerPoint) Experience with systems supporting Compliance, Risk, Audit, Privacy, and Management such as ServiceNow, Archer, etc. Project/Program Management Business Intelligence tool experience Bachelor's degree or higher in information management, information systems, law, computer science or BA/BS in another discipline with equivalent experience Experience in the financial services industry Certifications Preferred: Certifications in Information, Data, Privacy Records or Security such as: Certified Information Privacy Professional (CIPP), Certified Information Privacy Management (CIPM), Certified Records Manager (CRM), and/or Certified Information Privacy Technologist (CIPT), Certified Information Systems Security Professional (CISSP), Information Governance Professional (IGP), Certified Information Security Manager (CISM) and Certified Information Systems Auditor (CISA)