The University of Sheffield is a remarkable place to work. Our people are at the heart of everything we do. Their diverse backgrounds, abilities and beliefs make Sheffield a world-class university.

We offer a fantastic range of benefits including a highly competitive annual leave entitlement (with the ability to purchase more), a generous pensions scheme, flexible working opportunities, a commitment to your development and wellbeing, a wide range of retail discounts, and much more. Find out more about our benefits (opens in a new window) and join us to become part of something special.

Overview

IT Services at the University of Sheffield provide a full range of complex IT and technology-enabled services that support education, research, workplace, corporate services and infrastructure enablers to all our staff and students.

The Information Security team in IT Services is seeking a Security Assurance Officer in

the Security Operations team to contribute to its ongoing mission to keep the University safe and secure.

This is an exciting opportunity for you to work with the Security Assurance Manager to provide assurance to the University and its partners that we can protect information. You will support our staff and students to make sure they can work safely whilst getting the best out of the information under their control. This will include leading information security projects, the development and dissemination of policies as well as responding to requests for advice and guidance.

Experience with recognised information security standards and frameworks such as ISO/IEC 27001, PCI-DSS and Cyber Essentials will be particularly advantageous. You will be required to liaise with external stakeholders to satisfy their information security requirements.

You will be exposed to key, strategic initiatives, including the development and implementation of the University's Information Security Management System (ISMS) and providing research compliance support across a range of activities.

Main duties and responsibilities

Core Responsibilities

• Support the Information Security Team: Assist in protecting University information assets by continually reporting on security risk and compliance metrics and delivering improvements.
• Project Leadership: Lead information security projects designed to deliver technical and cultural changes to University assets and processes.
• Risk Assessment: Perform high- and low-level information security risk assessments.
• Policy & Procedure Development: Develop and implement new information security processes, procedures, and practices, and advise on or implement technologies to control risks.
• Control Monitoring: Track, monitor, and deliver improvements to information security controls across various faculties, departments, and research groups.

• Lead Compliance Activities: Manage and lead assurance activities for standards such as Cyber Essentials +, PCI-DSS, NHS DSPT, ONS SRS AOC and GDPR
• Risk Guidance: Provide support to manage risks, feeding into departmental and corporate risk registers and recommending suitable controls.

• Expert Advice: Respond to enquiries and provide expert support and guidance to all members of the University.
• Decision Making: Make recommendations on information security issues and potential developments to ensure the University’s infrastructure and policies support security goals.
• Awareness & Training: Promote information security awareness and skills, providing tailored training solutions where necessary.
• Cross-Departmental Collaboration: Work with colleagues in IT security, data protection, and research data management to ensure consistency in information support and governance.

• Stay Current: Keep up to date with published standards, legislation, and guidelines relevant to information security.
• General Duties: Perform any other duties commensurate with the grade of the post.

Person Specification

Our diverse community of staff and students recognises the unique abilities, backgrounds, and beliefs of all. We foster a culture where everyone feels they belong and is respected. Even if your past experience doesn't match perfectly with this role's criteria, your contribution is valuable, and we encourage you to apply. Please ensure that you reference the application criteria in the application statement when you apply.

Further Information

Next steps in the recruitment process

We plan to let candidates know if they have progressed to the selection stage within two weeks of the closing date. If you need any support, equipment or adjustments to enable you to participate in any element of the recruitment process you can contact it-services-recruitment@sheffield.ac.uk

Our vision and strategic plan

We are the University of Sheffield. This is our vision: sheffield.ac.uk/vision (opens in new window).

What we offer

• A minimum of 41 days annual leave including bank holiday and closure days (pro rata) with the ability to purchase more.
• Flexible working opportunities, including hybrid working for some roles.
• Generous pension scheme.
• A wide range of discounts and rewards on shopping, eating out and travel.
• A variety of staff networks, providing opportunities for social interaction, peer support and personal development (for example, Race Equality, LGBT+, Women’s and Parent’s networks).
• Recognition Awards to reward staff who go above and beyond in their role.
• A commitment to your development access to learning and mentoring schemes.
• A range of generous family-friendly policies
  • paid time off for parenting and caring emergencies
  • support for those going through the menopause
  • paid time off and support for fertility treatment
  • and more

More details can be found on our benefits page: sheffield.ac.uk/jobs/benefits (opens in a new window).

We are a Disability Confident Employer. If you have a disability and meet the essential criteria for this job you will be invited to take part in the next stage of the selection process.

Criminal record

BPSS clearance will be needed for this role. More details on the checks can be found on the Government website: gov.uk/criminal-record-checks-apply-role (opens in a new window).

Possession of a criminal record is not an automatic bar to employment at the University of Sheffield. We recognise the value of steady employment in the rehabilitation process and examine each case in its own right. More information can be found on our Information for candidates page:- sheffield.ac.uk/jobs/candidates (opens in a new window).

We are a research university with a global reputation for excellence. Our ideas and expertise change the world for the better, making a real difference to society. We know that when people come together with different views, approaches and insights it can lead to richer, more creative and innovative teaching and research and the highest levels of student experience. Our University Vision (www.sheffield.ac.uk/vision) outlines our commitment to building a diverse community of staff and students that recognises and values the abilities, backgrounds, beliefs and ways of living for everyone.