Group Information Security Officer

Welcome to Juniper Education, where our mission is to champion educators, empowering them to shape future generations. We're more than just a support system; we're the driving force that propels schools and Academy Trusts to new heights. In the education and tech industry, your work directly influences the lives of students and educators. Whether you're developing cutting-edge educational technology, supporting school leadership teams directly, or designing solutions to enhance the learning experience, you could make a lasting and positive impact on the future.

Our mission statement says it all: We look after you, so that you can look after our children.

Dedicated to our core values, we are committed to:

Empowerment: Equipping everyone with the tools, intelligence, connections, and freedom to make informed decisions, recognised and respected by all.

Purpose: Supporting everyone to reach their highest potential, thereby enabling all children to achieve theirs.

Passion: Because we love what you do, you’re at the heart of everything we do.

Innovation: Delivering meaningful solutions with expertise and creative thinking to influence the ever-changing world of education.

Collaboration: The cornerstone of our success as it enables us to collectively harness diverse perspectives and strengths, ensuring that together, we achieve more than we could ever do alone. Every voice counts!

We are seeking a Group Information Security Officer to lead our efforts in ensuring compliance with Cyber Essentials Plus, ISO 27001, and other critical information security standards. Reporting directly to the CFO, this is a hands-on role that will require you to work closely with key stakeholders across the organisation.

You will be responsible for the development, management, and improvement of Juniper’s Information Security Management System (ISMS), as well as the implementation of key policies and processes to mitigate security risks.

Providing the necessary focus and collaboration across all levels to ensure the highest standards of compliance and security are achieved across the organisation.

Key Responsibilities & Accountabilities:

• Develop and manage the company’s Information Security Management System (ISMS).
• Ensure ISMS requirements are integrated into technical and organisational processes.
• Monitor compliance with ISO 27001 and other security standards.
• Contribute to the Group’s Risk Management Framework and ensure alignment with business objectives.
• Establish and implement the company’s Information Security Policy.
• Identify risks and recommend treatment plans in line with the Risk Management Framework.
• Collaborate with the Group Data Protection Officer on DPIAs and address data privacy risks.
• Work with IT and Engineering to enhance system security, and create/test continuity, recovery, and incident management plans.
• Lead the response to information security incidents.
• Promote continuous improvement in information security through training and awareness.
• Ensure alignment with legislative and company policies.
• Provide regular updates to senior management and stakeholders.

Skills & Experience:

• Relevant qualifications (CISSP, CISM, CISA, ISO 27001 Lead Auditor/Implementer).
• In-depth knowledge of PCI-DSS, Cyber Essentials Plus, and ISO 27001.
• Experience in designing and implementing security policies and procedures.
• At least 3 years of experience in information security, compliance, or IT risk management.

Attributes & Personal Skills:

• Strong communication skills (written and verbal).
• Ability to work strategically and pragmatically.
• Logical, analytical, and creative problem-solving abilities.
• Strong business acumen and commercial awareness.
• Excellent stakeholder engagement and influence at all levels.

Working Pattern:

Hours: 37.5 per week

Location: Homebased

Juniper Education Benefits

• Day 1 right to company sick pay
• Enhanced annual leave entitlement
• Opportunity to purchase additional leave
• Entitlement to carry over leave to next entitlement year
• Day 1 access to 24/7 GP & prescription services
• Day 1 access to rewards platform
• Cycle to work scheme
• Enhanced maternity & adoption pay
• Day 1 access to employee assistance platform
• Funded development/Qualification opportunities
• Voluntary health care cash plan
• Voluntary private medical insurance
• Plus more!