Information Governance & Security Officer -GDPR- West Bromwich

Website Crimson Limited

Information Governance & Security Officer – GDPR – West Bromwich

Information security / GDPR / governance / IT security / cyber / ISO27001

Information Governance & Security Officer required for a leading support services company based in West Bromwich to be responsible for ensuring the company’s IT Security and Governance is kept up to date and within legislation, including ensuing the compliancy and resiliency of GDPR. This role is based in West Brom but would require travel to their Bromford office one day per week.


Key Responsibilities

  • GDPR legislation compliance – ensuring business compliancy & resiliency.
  • Develop and manage an Information Asset register, Information Sharing Agreements, Privacy Impact Assessments , Processing Activity records, Privacy Notices and Contract Management.
  • Ensure the effective management of information security risks and that data is protected in line with the needs of the business and the data protection principles of availability, integrity and confidentiality.
  • Ensure that threats, vulnerabilities and breaches are managed to minimise impact to confidentiality, integrity and availability of systems and data.
  • Assist with the implementation of ISO27001 across the Group of companies.
  • Perform internal audits based on industry standard frameworks and best practice (ISO27001, Cyber Essentials Plus, DSP Toolkit); measuring compliance with documented information security processes and policy.

Key Skills

  • Proven knowledge of related functions including risk management, compliance (GDPR), auditing, internal controls and general security.
  • Experience of developing and improving IT/information security processes.
  • Knowledge of ISO 27001 and other security compliance standards.
  • Understanding of current UK data protection requirements and awareness of the changes to be implemented by the General Data Protection Regulation.
  • Knowledge and experience in general data security processes including disaster recovery and business continuity.
  • Analytical skills with a proactive approach to problem solving.
  • Ability to identify and define risk mitigation strategies and auditing capability.
  • ISO 27001 Lead Auditor (desirable but not essential)

Information security / GDPR / governance / IT security / cyber / ISO27001


The salary for this position is between £45,000 and £50,000 per annum plus benefits.

Interested?! Send your up to date CV to Claire Ingram at Crimson for review

Not interested?! Do you know anyone that might be? Refer a friend for this role to earn £250 worth of vouchers.

Crimson are acting as an employment agency in regards to this vacancy

Information security / GDPR / governance / IT security / cyber / ISO27001

To apply for this job please visit