Information Security Consultant


Location: Gloucestershire

Job Type: Full time


See yourself being part of a large, transformational change? This could be the role for you!

Who we are

At Iress, we believe technology should help people perform better every day. Since our beginning in 1993, people across financial services have trusted us to take their performance to the next level. From the world’s most established financial brands to new and disruptive players, we help improve every aspect of our clients’ businesses so that they can work better, every day.

Iress is one of Australia’s largest technology companies and employs more than 1900 people across Australia, United Kingdom, South Africa, Canada, New Zealand and Asia.

Role Purpose

Working under the direction of Iress’ Global Information Security Team, the Information Security Consultant is responsible for supporting and collaborating with business units to deliver all matters pertaining to Iress Security, Risk and Compliance Management across our Global business.

This is a Hybrid role working 3 days a week in our Cheltenham Office.

Your objectives and responsibilities will focus on...

  • Consult with the business units, providing advice on and monitoring compliance to Iress’ Information Security Management System and Common Control Framework

  • Be responsible for operatingthe Information Security Management System to ensure it meets the needs of the business.

  • Participate and assist in the maintenance of the Iress ISO27001 certification and other compliance programmes as required.

  • Responsible for the Governance, Risk and Compliance toolset(s) used across Iress.

  • Coordinate and lead activities for internal facing information security audits.

  • Ensure the Group Tech and Infosec risk register is properly maintained and updated as appropriate.

  • Coordinate response to Information Security incidents.

  • Contribute to the creation and management of global Information Security policies, ensuring these are cascaded throughout the business.

  • Work with the Global Information Security Team on the design and operation of related compliance monitoring and improvement activities to ensure compliance both with internal security policies etc. and relevant applicable laws and regulations

  • Provide technical assistance on information security issues and technical solutions, including vendor assurance.

  • Support the production and distribution of regular, effective Information Security awareness.

  • Promote a business-partner approach to engagement - ensuring the function collaborates and works with (rather than police) business teams

To be successful in this role you will…

  • Relevant experience in information security management and/or related functions.

  • Experience of operating Information Security Governance, Risk & Compliance.

  • Experience in implementing and/or managing an ISO/IEC 27001 certified Information Security Management System.

  • Experience of operating Information Security/Cyber Tooling.

  • Typically a background in technical IT roles such as IT support, architecture, development or operations, with a clear interest in information security

  • Good knowledge of contemporary and emerging enterprise security standards, approaches and industry trends

  • Experience of managing or performing an incident management and/or audit findings program

  • Knowledge and understanding of relevant legal and regulatory requirements and guidelines

  • Experience in implementing and/or managing an SOC2 Type 1 and Type 2 accreditation

  • Ability to work collaboratively with technical experts across the business, building positive and constructive relationships.

Desirable requirements

  • Qualification in Information Security Certifications such as ISO 27001 Lead Implementer/Auditor or similar.

  • Experience of toolsets such as Axonius, Netskope SSE/Zero trust, G-Suite, Upguard, MetaCompliance.

  • Experience in working with Amazon Web Services (AWS)

Why work with us?

  • 8 paid days per year to extend your weekends + 25 days annual leave

  • State-of-the-art offices

  • Annual Profit Share when Iress meets its annual profit targets

  • Casual dress, flexible work policy

  • Access to learning and development programs through Udemy

  • 3 days’ leave per year for charity initiatives

  • Global 36-hour hackathon

  • Starting school leave - 8.5 days of leave to assist your kids with the transition to school

  • Life Insurance & Private Medical

  • Up to 26 weeks’ paid parental leave for primary carers (up to 4 weeks for secondary carers), and the ability to work part-time when returning to work

Employment Type


Time Type

Full time
You’ve got this!