INFORMATION SECURITY POSITION

The Impact Of The Specific Legislation On The Information Security Position Of The Organisation

The Impact Of The Specific Legislation On The Information Security Position Of The Organisation

Introduction

This position is currently located in the Office of Information Resources Management (IRM) of the company. The Information Systems Security Officer (ISSO) reports to the COMPANY CIO through the Director, Officer of Information Resource Management.

The COMPANY ISSO, in accordance with UK LAW, has the responsibility and authority to plan, coordinate, and control information system security for the entire (Agency/Department) worldwide including security measures for all: computers, electronic storage devices, and communication systems. This position serves as manager for the (Agency's/Department's) Information Systems Security Program and the supporting Information Systems Security Organization.

Duties and Responsibilities

Serves as Technical Advisor to COMPANY Senior Management on all areas of Information Systems Security and as such, responsible for:

Maintaining ongoing knowledge: (a) of Federal legislation, regulation, policies, and practices related to information systems security; (b) methodologies and best practices that are commonly used in the information systems security industry; (c) the status of Federal Information Systems Security initiatives that offer opportunities for COMPANY or pose requirements to be met by the (Agency/Department); (d) COMPANY automation architectures used at all (Agency/Department) locations including microcomputer, server, mainframe processing levels and related peripheral products; (e) COTS software packages; custom developed software applications; and network and telecommunications products and technologies; and, (f) the threats to and vulnerabilities of COMPANY to assess their potential impact on COMPANY information systems security accomplishment.

Recommending courses of action and policies to senior management that allow COMPANY to securely meet its organizational goals. Managing the monitoring and recording the performance of information systems security initiatives for COMPANY and regularly reporting its status to the Director of IRM, the CIO, and Assistant Administrator, Management (Agency/Bureau). The ISSO will ...