71 Information Governance jobs in Ireland

The Medical Council is seeking to appoint an Information Governance Manager at Senior Executive Officer Grade to join the Information Governance team on a permanent basis. This role will report to the Head of Information Governance.

This position will play a leading role in managing the organisation's obligations under the Data Protection Act 2018, Freedom of Information Act 2014 (FOI Act), Data Sharing and Governance Act 2019, and all other associated work. The successful applicant will work alongside the Data Protection Officer (DPO) for the Medical Council, as provided for under Section 34 of the Data Protection Act 2018.

Key responsibilities will include:

Data Protection:

• Management of requests received under the GDPR and Data Protection Act 2018. This involves collating the relevant material, liaising with all teams across the organisation, reviewing the material and making decisions based on risk assessments, policies etc. This includes but is not limited to standard Subject Access Requests, research requests for data, and requests from law enforcement and other Regulatory or Government bodies.
• Conducting Data Protection Impact Assessments under Article 35 of the GDPR as required, and conducting same on new projects and systems during planning stages. An understanding of when a DPIA is required as well as how to create same and address issues arising is essential.
• Responding to data protection related queries raised internally by staff and external stakeholders, as appropriate. This can include general privacy concerns, specific requests for advice/guidance and can involve liaising with other teams in order to provide accurate information.
• Reviewing existing and new contracts, MoUs, and SLAs with the Procurement function and General Counsel to ensure GDPR compliance. This can include updating clauses to reflect the nature of the contract and the jurisdiction in which it is created.
• Drafting, reviewing, developing and implementing data protection policies and procedures across the organisation to ensure compliance with the Data Protection Act 2018 and the GDPR. Where possible, this will involve bespoke guidance for each team dependent on what kind of data processing they do.
• Advising on any data protection issues with regard to the exchange of data with other bodies and for any contracts or services, including within the EU and 3rd countries.
• Overseeing compliance with the Data Breach Response Procedure including reporting, monitoring and management of all breaches. This will include engagement with the DPC when required. Being solution focused is essential.
• Management of all investigations, inquiries and complaints which may be commenced by the Data Protection Commission (DPC), including required follow-ups.
• Ongoing monitoring of advice and decisions issued by the DPC, with a focus on those directly relevant to the Medical Council.
• Providing reports on a regular basis to the Executive Leadership team, Senior Management, Committees and Council.
• As required, management of specific case files in conjunction with external and internal legal advisors.
• Escalation of data protection issues as appropriate.
• Identify, initiate and support the implementation of requirements under the Data Sharing and Governance Act 2019.
• Attend and actively contribute to meetings with other regulatory bodies and internal/external stakeholders.
• Take a leading role in the management of risk within the Medical Council - identifying, assessing, monitoring, and addressing

Freedom of Information (FOI):

Assisting the FOI Officer when required. This may include reviewing decisions and records.

Providing advice and guidance on the application of appropriate exemptions under the FOI Act within the Information Governance team, and the wider staff of the Medical Council.

Reviewing, drafting, and issuing decisions as the Internal Reviewer, in line with the FOI Act.

Management of investigations and appeals commenced by the Office of the Information Commissioner (OIC) in line with the FOI Act, and other legislation as appropriate (e.g. Medical Practitioners Act 2007, Data Protection Act 2018, etc.).

As required, management of specific case files in conjunction with external and internal legal advisors.

Ensure compliance with the Medical Council's requirements under the FOI Act including but not limited to the Publication Scheme and publication of Quarterly Disclosure Logs.

Providing statistical data annually and as required to the OIC.

Record Management:

Review, update and implement changes to the existing Records Management Policy and Data Retention Schedule to ensure compliance with data protection legislation and internal policy in relation to the secure storage, and destruction of records.

Other Duties:

Provide training to staff, Council and Committees on their obligations in relation to Information Governance and, in particular, deliver bespoke advice on trending data breaches etc.

As appropriate, advise the organisation of changes in legislation and regulatory requirements and ensure policies and procedures are updated accordingly.

Although this role is focussed on Information Governance, the successful candidate may be required to review and consider other legislation which the Medical Council may be subject to.

Support the Head of Section with the development of strategy and the business plan in relation to the section.

Manage the organisation's obligations under the Re-use of Public Sector Information legislation.

As required, actively review and provide updates to the Information Governance Risk Register.

Work closely with the Head of Risk and Compliance to conduct internal audits and reviews of data protection, FOI, record management, processes and procedures across the organisation.

Manage the implementation of, and provide updates on, recommendations following internal/external audits.

Ensure adherence to all timeframes as set out in legislation.

Management of sectional specific internal audits on processes and procedures.

Undertake continuing education and professional development consistent with the post particularly in relation to Data Protection and Freedom of Information.

Contribute to the management and development of staff within the section.

Perform any other duties as may be assigned from time to time.

Essential Criteria:

A minimum of 2 years' experience working in a data protection specific role, preferably in an organisation which operates procedures and activities within a statutory framework.

Excellent working knowledge of the Data Protection Act 2018, GDPR and the Freedom of Information Act 2014.

Experience with Record Management.

• Desirable Criteria:
• Third level qualification or equivalent.
• A formal qualification in data protection would be ideal.
• Good knowledge of the role of the Medical Council, its functions and the context in which it operates.
• Experience leading a team would be beneficial.

Essential Characteristics:

Strong interpersonal skills - the successful candidate must be comfortable engaging with a variety of stakeholders, and colleagues at different grades.

Communicate with tact, understanding, and discretion with colleagues and members of the public when dealing with enquiries/information requests.

Maintain a high level of confidentiality and discretion at all times when dealing with information.

The ability to interpret various legislation, directives, and policy and how these may be applied in standard day-to-day process and procedure

Highly organised approach to all tasks, with strong attention to detail in executing complex tasks and procedures.

Ability to be clear, comprehensive and concise in communications, including reports (both qualitative and quantitative), minutes, website content, publications and interactions with statutory bodies e.g. OIC, DPC,.

Ability to work independently, to demonstrate initiative and to work as part of a team.

Ability to flex and adapt to changing demands, manage competing priorities and meet deadlines.

Have the ability to make a significant contribution to the development of policy is a key requirement.

Details of this Appointment:

Position Type: This appointment will be offered on a permanent basis, 6 month probation will apply.

Salary:Starting salary will be at €58,847 which is the first point of the Senior Executive Officer PayScale.

If you are currently a serving civil or public servant, your entry point to the PayScale may be higher based on your current salary.

There will be salary increment each year in line with the Senior Executive Officer Grade PayScale and subject to satisfactory performance, until the maximum point on the scale has been reached. The rate of remuneration will not be subject to negotiation and may be adjusted from time to time in line with Government pay policy.

Senior Executive Officer PayScale

€8,847 ,567 ,285 ,000 ,723 ,437 ,157

,637' (LS1 After 3 years satisfactory service at the maximum)

,11222 (LS2 After 6 years satisfactory service at the maximum)

Annual Leave: 29 working days plus public holidays

Hours: 35 hours per week, Mon-Fri.

Location:The Medical Council's offices are located at Kingram House, Kingram Place, Dublin 2. We operate a hybrid working model with both remote working and a current requirement for on-site attendance two days per week. This may be reviewed in time.

Pension:The Medical Council offers a pension through the Public Sector Scheme. Contributions to the scheme will commence on joining the organisation. Candidates currently working in the Public or Civil Service may transfer their pension.

Rewards/ Benefits:

Dedicated Wellbeing Group and Wellbeing Initiatives, Employee Assistance Programme, and Wellbeing App, Training and Development, Public Service Sick Leave Scheme, TaxSaver Travel Tickets, Bike to Work Scheme, Subsidised Flu Jabs, Paid Exam Leave & Study Leave, Income Continuance Scheme, Civil Service Credit Union,

Apply by: 30th September 2025

Expected Interviews: w/c 6th or 13th October 2025

The Medical Council is seeking to appoint an Information Governance Manager at Senior Executive Officer Grade to join the Information Governance team on a permanent basis. This role will report to the Head of Information Governance.

This position will play a leading role in managing the organisation's obligations under the Data Protection Act 2018, Freedom of Information Act 2014 (FOI Act), Data Sharing and Governance Act 2019, and all other associated work. The successful applicant will work alongside the Data Protection Officer (DPO) for the Medical Council, as provided for under Section 34 of the Data Protection Act 2018.

Key responsibilities will include:
Data Protection:

• Management of requests received under the GDPR and Data Protection Act 2018. This involves collating the relevant material, liaising with all teams across the organisation, reviewing the material and making decisions based on risk assessments, policies etc. This includes but is not limited to standard Subject Access Requests, research requests for data, and requests from law enforcement and other Regulatory or Government bodies.
• Conducting Data Protection Impact Assessments under Article 35 of the GDPR as required, and conducting same on new projects and systems during planning stages. An understanding of when a DPIA is required as well as how to create same and address issues arising is essential.
• Responding to data protection related queries raised internally by staff and external stakeholders, as appropriate. This can include general privacy concerns, specific requests for advice/guidance and can involve liaising with other teams in order to provide accurate information.
• Reviewing existing and new contracts, MoUs, and SLAs with the Procurement function and General Counsel to ensure GDPR compliance. This can include updating clauses to reflect the nature of the contract and the jurisdiction in which it is created.
• Drafting, reviewing, developing and implementing data protection policies and procedures across the organisation to ensure compliance with the Data Protection Act 2018 and the GDPR. Where possible, this will involve bespoke guidance for each team dependent on what kind of data processing they do.
• Advising on any data protection issues with regard to the exchange of data with other bodies and for any contracts or services, including within the EU and 3rd countries.
• Overseeing compliance with the Data Breach Response Procedure including reporting, monitoring and management of all breaches. This will include engagement with the DPC when required. Being solution focused is essential.
• Management of all investigations, inquiries and complaints which may be commenced by the Data Protection Commission (DPC), including required follow-ups.
• Ongoing monitoring of advice and decisions issued by the DPC, with a focus on those directly relevant to the Medical Council.
• Providing reports on a regular basis to the Executive Leadership team, Senior Management, Committees and Council.
• As required, management of specific case files in conjunction with external and internal legal advisors.
• Escalation of data protection issues as appropriate.
• Identify, initiate and support the implementation of requirements under the Data Sharing and Governance Act 2019.
• Attend and actively contribute to meetings with other regulatory bodies and internal/external stakeholders.
• Take a leading role in the management of risk within the Medical Council - identifying, assessing, monitoring, and addressing

Freedom of Information (FOI):
Assisting the FOI Officer when required. This may include reviewing decisions and records.

Providing advice and guidance on the application of appropriate exemptions under the FOI Act within the Information Governance team, and the wider staff of the Medical Council.

Reviewing, drafting, and issuing decisions as the Internal Reviewer, in line with the FOI Act.

Management of investigations and appeals commenced by the Office of the Information Commissioner (OIC) in line with the FOI Act, and other legislation as appropriate (e.g. Medical Practitioners Act 2007, Data Protection Act 2018, etc.).

As required, management of specific case files in conjunction with external and internal legal advisors.

Ensure compliance with the Medical Council's requirements under the FOI Act including but not limited to the Publication Scheme and publication of Quarterly Disclosure Logs.

Providing statistical data annually and as required to the OIC.

Record Management:
Review, update and implement changes to the existing Records Management Policy and Data Retention Schedule to ensure compliance with data protection legislation and internal policy in relation to the secure storage, and destruction of records.

Other Duties:
Provide training to staff, Council and Committees on their obligations in relation to Information Governance and, in particular, deliver bespoke advice on trending data breaches etc.

As appropriate, advise the organisation of changes in legislation and regulatory requirements and ensure policies and procedures are updated accordingly.

Although this role is focussed on Information Governance, the successful candidate may be required to review and consider other legislation which the Medical Council may be subject to.

Support the Head of Section with the development of strategy and the business plan in relation to the section.

Manage the organisation's obligations under the Re-use of Public Sector Information legislation.

As required, actively review and provide updates to the Information Governance Risk Register.

Work closely with the Head of Risk and Compliance to conduct internal audits and reviews of data protection, FOI, record management, processes and procedures across the organisation.

Manage the implementation of, and provide updates on, recommendations following internal/external audits.

Ensure adherence to all timeframes as set out in legislation.

Management of sectional specific internal audits on processes and procedures.

Undertake continuing education and professional development consistent with the post particularly in relation to Data Protection and Freedom of Information.

Contribute to the management and development of staff within the section.

Perform any other duties as may be assigned from time to time.

Essential Criteria:
A minimum of 2 years' experience working in a data protection specific role, preferably in an organisation which operates procedures and activities within a statutory framework.

Excellent working knowledge of the Data Protection Act 2018, GDPR and the Freedom of Information Act 2014.

Experience with Record Management.

• Desirable Criteria:
• Third level qualification or equivalent.
• A formal qualification in data protection would be ideal.
• Good knowledge of the role of the Medical Council, its functions and the context in which it operates.
• Experience leading a team would be beneficial.

Essential Characteristics:
Strong interpersonal skills
- the successful candidate must be comfortable engaging with a variety of stakeholders, and colleagues at different grades.

Communicate with tact, understanding, and discretion
with colleagues and members of the public when dealing with enquiries/information requests.

Maintain a
high level of confidentiality and discretion
at all times when dealing with information.

The ability to
interpret various legislation, directives, and policy
and how these may be applied in standard day-to-day process and procedure

Highly organised
approach to all tasks, with strong attention to detail in executing complex tasks and procedures.

Ability to be
clear, comprehensive and concise in communications
, including reports (both qualitative and quantitative), minutes, website content, publications and interactions with statutory bodies e.g. OIC, DPC,.

Ability to
work independently
, to demonstrate initiative and to work as part of a team.

Ability to
flex and adapt to changing demands
, manage competing priorities and meet deadlines.

Have the ability to make a significant contribution to the development of policy is a key requirement.

Details of this Appointment:
Position Type:
This appointment will be offered on a permanent basis, 6 month probation will apply.

Salary:
Starting salary will be at
€58,847
which is the first point of the Senior Executive Officer PayScale.

If you are currently a serving civil or public servant, your entry point to the PayScale may be higher based on your current salary.

There will be salary increment each year in line with the Senior Executive Officer Grade PayScale and subject to satisfactory performance, until the maximum point on the scale has been reached. The rate of remuneration will not be subject to negotiation and may be adjusted from time to time in line with Government pay policy.

Senior Executive Officer PayScale

€8,847 ,567 ,285 ,000 ,723 ,437 ,157

r>71,637'
(LS1 After 3 years satisfactory service at the maximum)

r>74,112
2
2 (LS2 After 6 years satisfactory service at the maximum)

Annual Leave:
29 working days plus public holidays

Hours:
35 hours per week, Mon-Fri.

Location:
The Medical Council's offices are located at Kingram House, Kingram Place, Dublin 2. We operate a hybrid working model with both remote working and a current requirement for on-site attendance two days per week. This may be reviewed in time.

Pension:
The Medical Council offers a pension through the Public Sector Scheme. Contributions to the scheme will commence on joining the organisation. Candidates currently working in the Public or Civil Service may transfer their pension.

Rewards/ Benefits:
Dedicated Wellbeing Group and Wellbeing Initiatives, Employee Assistance Programme, and Wellbeing App, Training and Development, Public Service Sick Leave Scheme, TaxSaver Travel Tickets, Bike to Work Scheme, Subsidised Flu Jabs, Paid Exam Leave & Study Leave, Income Continuance Scheme, Civil Service Credit Union,

Apply by: 30th September 2025
Expected Interviews: w/c 6th or 13th October 2025

The Information Security Officer will play a key role in promoting cybersecurity best practices and ensuring regulatory compliance across two closely aligned business units. The position focuses on IT risk management, policy alignment, security operations, and user access governance, helping to protect systems, data, and users while enhancing the overall security posture. This is a mid level role.

Key Responsibilities:

IT Risk Management

• Identify, assess, document, and treat IT risks across systems, infrastructure, and processes.
• Maintain and update risk registers and Level 1 controls.
• Lead risk assessments, remediation efforts, and control improvement.

Policy & Compliance

• Ensure alignment with global and regulatory security standards (ISO 27001, NIST, GDPR).
• Enforce IT security policies and support audit and compliance readiness.

Security Operations

• Respond to and manage IT security incidents and escalations.
• Oversee identity and access management, including privileged access and user reviews.
• Deliver organisation-wide security awareness training.

Reporting & Governance

• Produce dashboards and reports detailing risk exposure and control effectiveness.
• Provide regular updates to management and leadership.

Candidate Profile:

Experience:

• Minimum 3 years in IT risk management, cybersecurity, or compliance.
• Proven ability to work across multiple teams or business units.

Skills:

• Familiar with security frameworks (ISO 27001, NIST), IT general controls, and GDPR.
• Strong analytical, organisational, and communication skills.
• Ability to explain technical risks in simple, business-focused terms.

Qualifications (Desirable):

• Degree in IT, Cybersecurity, or a related field.
• Security certifications such as ISO 27001, CISM, or CompTIA Security+.

What the Role Offers:

• Flexible working and a balanced work environment.
• Ongoing training and professional development support.
• Competitive salary with performance-based bonus.
• Strong internal culture focused on innovation, learning, and collaboration

Our client is looking for a
Cloud and Compliance Specialist
to join their team in Dublin for an 11 month hybrid position (3 days on site, 2 days remote)

Responsibilities:

• Support significant programs of work across various levels of XFNs in Cloud Security and Cloud GRC areas.
• Collaborate with team members and stakeholders to understand or identify defined work problems and program goals, obtain prioritized deliverables, and discuss program impact.
• Designing, implementing, and/or assessing security controls and frameworks
• Implement maturity frameworks across multiple programs factoring in emerging regulations and proactive detection of risks.
• Assess and document emerging regulatory impact on established policy and control frameworks
• Identify, communicate, and collaborate with relevant stakeholders within one or more teams to drive impact and work toward mutual goals.
• Establish learnings, best practices, standardized frameworks and tools across GRC and related teams.
• Develop detailed program/project plans in partnership with XFN teams.
• EU Security Office - Document compliance positions for NIS 2 and RED, support SRA delivery
• Cloud Security GRC - Conduct deep-dives into Cloud environments; document GRC-driven positions, and look for opportunities to improve Cloud Security Posture

Requirements:

• At least 5-7 years in Information Security.
• Deep and demonstrable familiarity with key Cloud Security, Risk Management and Compliance concepts Several years
• (5+) of hands-on security experience with at least one of the major CSPs (AWS, GCP, Azure)
• Experience in a GRC function overseeing Cloud implementations at scale
• Experience in designing and implementing control frameworks
• Experience in assessing security deficiencies in information systems and recommending mitigating controls in a corporate environment

Benefits:

• Competitive salary
• Healthcare contribution and inclusion in company pension scheme
• Work laptop and phone
• 25 days annual leave (pro-rata) plus paid bank holidays
• Expanding workforce with potential for career progression for top performers

Information Security (InfoSec) Analyst

12 month fixed term ( very likely to go longer)

Location:
Dublin West - 3 Days on site, Dublin West outside of the M50

Eligibility:
Open to candidates who do
not
require visa sponsorship

Stamp 1G (Spouse), Stamp 1G (Graduate, 12+ months remaining), Stamp 4 or EU passport holders.

We're looking for an Information Security Analyst to join a growing Cyber Security team, playing a key role in strengthening the organisation's security posture.

This role focuses on risk management, compliance, documentation and preparation for the upcoming NIS2 Directive.

Reporting into a Senior Information Security Manager, you'll help ensure the confidentiality, integrity and availability of data across a complex vendor ecosystem.

It's a hands-on governance and assurance role with a strong focus on vendor compliance, policy development and the continuous improvement of security controls and practices.

About You

• Previous experience in Information Security, Risk Management or Compliance.
• Previous experience vendor risk and third-party compliance.
• Excellent communication and stakeholder management skills.
• Knowledge of GDPR, ISO/IEC 27001 or NIS2 requirements. (Not a major thing if you don't)
• (Bonus) Certifications such as CISSP, CISM, or ISO 27001 Lead Implementer.

Key Responsibilities

• Support audits, assurance activities and evidence collection for compliance frameworks.
• Conduct and maintain risk assessments to identify and address threats and vulnerabilities.
• Collaborate across Legal, Compliance and IT to embed effective security governance.
• Foster a strong security and compliance culture across the organisation and partner network.
• Monitor and improve third-party/vendor compliance obligations.

This is a great role someone who has wants to grow their experience in security, governance, vendor risk and compliance

Our Dublin based client is looking for an Information Security Architect to join their team. This role requires technical expertise in security architecture combined with proven consultancy experience. This is a daily rate contract role offering excellent daily rates.

Key Responsibilities:

• Design, document, and maintain enterprise-level security architectures, reference models, and security controls frameworks.
• Align security architecture with business and IT strategies, ensuring consistency across on-premise, cloud, and hybrid environments.
• Act as a trusted advisor to senior stakeholders, translating business needs into secure technology solutions.
• Deliver workshops, assessments, and security briefings to executive and technical audiences.
• Provide independent security consultancy to multiple projects and programmes simultaneously.
• Develop business cases and roadmaps for security improvement initiatives.
• Lead risk assessments, threat modelling, and security gap analyses for projects and existing systems.
• Guide IT and development teams in implementing secure architectures and controls.
• Oversee the selection and deployment of security tools and technologies.
• Support incident response, forensic investigations, and remediation planning when required.

Essential Experience:

• 5+ years of professional experience in Security Architecture.

Educational Requirements:

• Degree in Computer Science, Information Technology, or a related discipline.

Benefits:

• Competitive daily rate.

Senior Information Security Architect
.

Contract position - Dublin

Realtime are looking for a
Senior Information Security Architect
. You will be responsible for crafting and executing a comprehensive security strategy. You will lead the development of security architecture, policies, and processes, ensuring compliance and addressing emerging threats. Your role will be crucial in minimizing risks and safeguarding the company's operational capabilities and reputation. This is an exciting opportunity to develop and implement security strategies and lead form the front.

Skills & Responsibilities:

• Proven experience in cybersecurity, developing/ implementing security strategies & policies.
• Strong experience implementing Zero trust architecture (ZTA)
• Extensive experience of IT security practices and standards.
• IT security technologies: encryption, authentication, EDR, XDR…
• Experience implementing multi-factor authentication.
• GDPR compliance and security best practices.
• Experience working with 3rd party suppliers to conduct penetration tests.
• Legal security requirements: Data Protection acts, PCI DSS, NIS2
• Security control frameworks: NIS2, ISO 27000, ENISA ISF, COBIT.
• Experience with risk assessment, incident management, and compliance.
• Create and implement security strategies, architectures, and policies.
• Lead IT security projects to enhance overall security posture.
• Develop and maintain IT security policies, standards, and guidelines.
• Work closely with managed security partners and oversee their services.
• Conduct IT security risk assessments and manage security-related incidents.
• Monitor and assess emerging threats and their potential impact.
• Develop materials to promote security awareness among staff.
• Ensure compliance with GDPR, health & safety, and other regulatory requirements.
• Implement secure design, threat modeling, & security control frameworks: NIS2, ISO27000.

If you are interested send your CV to

Every day, Global Payments makes it possible for millions of people to move money between buyers and sellers using our payments solutions for credit, debit, prepaid and merchant services. Our worldwide team helps over 3 million companies, more than 1,300 financial institutions and over 600 million cardholders grow with confidence and achieve amazing results. We are driven by our passion for success and we are proud to deliver best-in-class payment technology and software solutions. Join our dynamic team and make your mark on the payments technology landscape of tomorrow.

Evaluates, tests, recommends, develops, coordinates, monitors, and maintains information security policies, procedures and systems, including hardware, firmware and software . Ensures that IS security architecture/designs, plans, controls, processes, standards, policies and procedures are aligned with IS standards and overall IS security . Identifies security risks and exposures, determines the causes of security violations and suggests procedures to halt future incidents. Investigates and resolves security incidents and recommends enhancements to improve security. Develops techniques and procedures for conducting IS security risk assessments and compliance audits, the evaluation and testing of hardware, firmware and software for possible impact on system security, and the investigation and resolution of security incidents.

• Gains and maintains knowledge of how to monitor complex systems and response to known and emerging threats against the Global Payments network via intrusion detection software
• Assists in detailed, comprehensive investigation of security issues by reviewing security log data, interpreting data in support of security event management process from various data feeds and triages on a wide variety of security events.
• Under close supervision performs incident handling process by gaining knowledge in implementation of containment, protection and remediation activities.
• Gains and maintains knowledge of new and emerging threats that can affect the organization's information assets by assisting in analysis of third party software/solutions, IT configuration changes (including access control requests), and network/system architecture from risk perspective
• Under close supervision designs and configures security systems, including proxy, remote access, mail gateway, intrusion prevention, wireless networking, data leak prevention, security information and event management and web application firewalls.
• Assists in assessing and disseminating threats related to the enterprise in regard to current vulnerability by managing and developing an emerging threat model.
• Develops an understanding of how to assess risks based on changes to implementation of ISO(International Organization for Standardization)/BSO(Business Services Online); gains knowledge of PCI(Payment Card Industry)/Logical Security guidelines and models, HIPPA(health insurance portability and accountability act), PII(Personally Identifiable Information), and Card personalization.
• Gains knowledge of how to create cost effective solutions for system/application development regarding Information Security processes and concepts in applicable systems and software.
• Works under close supervision to perform day-to-day Information Security functions pertaining to numerous security software products and processes.

Minimum Qualifications

• Bachelor's Degree
• Relevant Experience or Degree in: Bachelor's degree in Computer Science, Info Security, or related field. Or relevant work experience in a related field.
• Typically No Relevant Experience Required

Preferred Qualifications

• Typically Minimum 2 Years Relevant Exp
• Including network operations or engineering or system administration on Unix, Linux, MAC(Message Authentication Code), or Windows; common security operations, intrusion detection systems, Security Incident Even Management systems, and anti-virus collection logs; including knowledge of industry standard security compliance programs PCI(Payment Card Industry), SOX(Sarbanes-Oxley) , GLBA(Gramm Leach Bliley Act), etc.))

• Skills / Knowledge - Learns to use professional concepts. Applies company policies and procedures to resolve routine issues.
• Job Complexity - Works on problems of limited scope. Follows standard practices and procedures in analyzing situations or data from which answers can be readily obtained. Builds stable working relationships internally.
• Supervision - Normally receives detailed instructions on all work.
• Risk Assessment - Ability to identify, communicate, and mitigate risk within technical solution designs
• Industry Knowledge - Continued self-education of new and emerging threats and relevant processes, controls, or technologies to mitigate them.
• Incident Response - Knowledge and skills to contribute to all phases of Incident Response.

Global Payments Inc. is an equal opportunity employer. Global Payments provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex (including pregnancy), national origin, ancestry, age, marital status, sexual orientation, gender identity or expression, disability, veteran status, genetic information or any other basis protected by law. If you wish to request reasonable accommodations related to applying for employment or provide feedback about the accessibility of this website, please contact

Information Security Analyst - Dublin

ICON plc is a world-leading healthcare intelligence and clinical research organization. We're proud to foster an inclusive environment driving innovation and excellence, and we welcome you to join us on our mission to shape the future of clinical development.

Information Security Analyst
At ICON, it's our people that set us apart. Our diverse teams enable us to become a better partner to our customers and help us to fulfil our mission to advance and improve patients' lives.

Our 'Own It' culture is driven by four key values that bring us together as individuals and set us apart as an organisation: Accountability & Delivery, Collaboration, Partnership and Integrity. We want to be the Clinical Research Organisation that delivers excellence to our clients and to patients at every touch-point. In short, to be the partner of choice in drug development.

That's our vision. We're driven by it. And we need talented people who share it.

If you're as driven as we are, join us. You'll be working in a dynamic and supportive environment, with some of the brightest and the friendliest people in the sector, and you'll be helping shape an industry.

The Role
We are currently recruiting for an Information Security Analyst to work in the Governance, Risk & Compliance segment of our Cyber Security Team. This is a really great time to join this division as it is undergoing significant development and you will be joining at a time of exciting change with lots of opportunities for growth and development.

Responsibilities

• Perform activities in the support of one or more information security management practices, such as security compliance, security risk assessment and management, security policy management.
• Ensure activities are performed in accordance with company policies and industry standard frameworks (e.g., NIST CSF, NIST RMF and ISO
• Perform information security risk assessments, security compliance continuous monitoring, and/or various regulatory or contractual compliance activities.
• Work with other key stakeholders (e.g., quality assurance, legal, data protection office, business continuity, and other information technology business units) to ensure the organization analyzes and communicates information security risks and status of controls compliance effectively.
• Participate in the development of training and communication materials for key stakeholders of the process within your area of control or expertise.
• Advise and educate stakeholders on managing cybersecurity risks and information assurance activities in accordance with ICON's policies and procedures.
• Participate in authoring and reviewing information security policies and procedures pertaining to information security risk management and information assurance activities.
• Assist in the development of reports relating to the effectiveness of the cybersecurity risk management and assurance program.
• Perform ancillary tasks to support the strategic mission and objectives of the Cyber and Information Security department, as needed.
• Research and stay current on new technical literature applicable to information security, risk management, and information assurance.
• Assist in the development of metrics relating to the Cybersecurity Risk Management and Assurance team's business functions/processes.

Desired Qualifications

• Working technical knowledge of industry best practices and commonly used frameworks & standards (e.g., NIST 800-53/171, COSO, SOC/SSAE 18, COBIT, ISO ,) and various regulations pertaining to information security, cyber risk management, compliance, and data privacy (e.g., SOX, GDPR, HIPAA, GxP/GALP/GMP).
• Prior experience using an integrated risk management tool (e.g., ServiceNow) and/or vendor risk management tool (e.g., Process Unity) is a plus.
• Possess basic-to-intermediate understanding of risks and controls pertaining to technical, management, and operations security controls, system development lifecycle, business continuity, disaster recovery, data center controls, cloud computing, third-party risk management and privacy.
• Holds a CISSP, CISM, CISA, CRISC, ISO 27001 Lead Auditor or Implementer or similar certification; desirable but not required.

Minimum Requirements

• Fundamental relationship management and communications skills.
• Fundamental ability to solve problems and apply skills to determine risk or compliance deviations.
• Bachelor's degree in Computer Science, Information Systems, Cybersecurity, Enterprise Risk Management or related field or equivalent experience and one year of risk management, cybersecurity, compliance or related experience (or combined equivalent education, training, and experience).
• Excellent written and verbal communication skills.
• Read, write and speak fluent English, with strong documentation and organizational skills.

Benefits Of Working In ICON
Our success depends on the quality of our people. That's why we've made it a priority to build a culture that rewards high performance and nurtures talent.

We offer very competitive salary packages. And to keep them competitive, we regularly benchmark them against our competitors. Our annual bonuses reflect delivery of performance goals – both ours and yours.

We also provide a range of health-related benefits to employees and their families and offer competitive retirement plans – and related benefits such as life assurance – so you can save and plan with confidence for the years ahead.

But beyond the competitive salaries and comprehensive benefits, you'll benefit from an environment where you are encouraged to fulfil your sense of purpose and drive lasting change.

ICON is an equal opportunity and inclusive employer and is committed to providing a workplace free of discrimination and harassment. All qualified applicants will receive equal consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status.

If, because of a medical condition or disability, you need a reasonable accommodation for any part of the application process, or in order to perform the essential functions of a position, please let us know through the form below.

What ICON Can Offer You
Our success depends on the quality of our people. That's why we've made it a priority to build a diverse culture that rewards high performance and nurtures talent.

In addition to your competitive salary, ICON offers a range of additional benefits. Our benefits are designed to be competitive within each country and are focused on well-being and work life balance opportunities for you and your family.

Our Benefits Examples Include

• Various annual leave entitlements
• A range of health insurance offerings to suit you and your family's needs.
• Competitive retirement planning offerings to maximize savings and plan with confidence for the years ahead.
• Global Employee Assistance Programme, LifeWorks, offering 24-hour access to a global network of over 80,000 independent specialized professionals who are there to support you and your family's well-being.
• Life assurance
• Flexible country-specific optional benefits, including childcare vouchers, bike purchase schemes, discounted gym memberships, subsidized travel passes, health assessments, among others.

Visit our careers site to read more about the benefits ICON offers.

At ICON, inclusion & belonging are fundamental to our culture and values. We're dedicated to providing an inclusive and accessible environment for all candidates. ICON is committed to providing a workplace free of discrimination and harassment. All qualified applicants will receive equal consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status.

If, because of a medical condition or disability, you need a reasonable accommodation for any part of the application process, or in order to perform the essential functions of a position, please let us know or submit a request here

Interested in the role, but unsure if you meet all of the requirements? We would encourage you to apply regardless – there's every chance you're exactly what we're looking for here at ICON whether it is for this or other roles.

Are you a current ICON Employee? Please click here to apply