Information Security and Data Protection Support Officer

About Unmind

Unmind is a workplace mental health platform. We empower employees to live more fulfilling and balanced lives by changing the way organisations around the world think about mental health. We believe that everyone has the right to a healthy mind – because we all have mental health, all of the time – and we’re striving to create a world where mental health is universally understood, nurtured, and celebrated.

Having closed our Series B funding in April 2021, and looking ahead to our Series C, we're excited about the next stage of growth which will enable us to deliver on our mission to improve the mental wellbeing of ten million people in organisations around the world. We’re a fast-growing team with over 180 Unminders across London, Sydney and New York and would love for you to join us as our new Data Protection & Information Security Support Officer.

Uniting Behind Uniqueness

One of our values is “Unite Behind Uniqueness” based on the belief that humans are endlessly unique and their opportunities are equally important. In order to fulfil our mission, we want our team to represent the diversity of our users which is why we’re committed to building an inclusive workplace where we encourage everyone to bring their whole selves to work. We want to foster a culture where everybody feels included, heard, and equal – regardless of age, disability, gender, neurodiversity, marital or parental status, race, religion or belief, or sexual orientation.

If there are any adjustments we can make that would help improve your experience with Unmind, please do let us know when you apply or email us at [email protected].

The Role – Data Protection & Information Security Support Officer

Working closely with the Head of IT & Information Security to develop and implement Unmind’s Information Security strategy and GRC programs including the management of Unmind’s ISO27001 certification. We are looking for someone who can be hands-on and take ownership of certain information security activities within Unmind and play a key role in helping to manage the company's security posture, developing IT security policies and forming controls over the company’s information.

Your main duties and responsibilities will include the following:

• Assistance with maintaining our ISO 27001 certification in our UK office and ensuring these controls are mirrored in our global offices.
• Assist with maintaining our compliance with General Data Protection Regulations (GDPR), respond to general data protection enquiries and completing Data Privacy Impact Assessments.
• Monitoring, auditing and reporting on information security compliance and security risk across the information security management system.
• Advising and assisting with the investigation and remediation of information security incidents across all systems, offices and information.
• Assisting and contributing to Unmind's security, education and awareness programme.
• Contribute efforts to pre-sales Information security questionnaires and assist with client security queries when required.
• Conduct security risk assessments with accompanying recommendations and implementation of compensating controls.
• Assist with the management of Unmind's 3rd party supplier assurance process.
• Assist with external ISO 27001 audit preparation and planning.
• Provide key contributions to the development of the security strategy for the business, including the supporting policies and processes.
• Monitor, identify, investigate and escalate security events and incidents.

Requirements

Skills and Experience

We encourage you to remove education from your CV upon application as qualifications are not a driving factor in our decision making and we are committed to tackling educational inequality. We firmly believe that no one is the finished article and that there should be learning in every role you do. However, some experience in the following is important for this position:

Required:

• Good knowledge of the fundamentals of Information Security and governance.
• An understanding of cybersecurity frameworks especially ISO 27001 and Cyber Essentials.
• Working knowledge of Data Protection legislation and particularly UK/EU GDPR.
• Commitment, attention to detail and a real passion for security.
• Excellent analytical and problem solving skills.
• Flexible attitude and an ability to perform under pressure.
• Ability to develop and manage an ISMS and security policies.
• Passionate about mental health, tech-for-good, and generally improving people’s lives.
• Comfortable working in an environment of rapid growth, constant change, and lots of unknowns.
• Hungry to make Unmind the global category leader of workplace mental health.

Benefits

At Unmind we believe in having a whole person approach and we hope that our benefits enhance the lives of Unminders, helping them be happy, healthy and fulfilled. You can see the full details of our benefits on our careers page, but they include:

• Private Medical Insurance for you and your family
• Unmind Equity scheme
• 25 days annual leave plus your birthday day off and celebration days
• Flexible working, including flexible use of Public Holidays
• Summer Fridays
• £1,000 annual learning budget with 2 days learning leave
• Monthly ClassPass Subscription
• Dog-friendly workplace

We believe our interview process should be inclusive and transparent. Find out what to expect and more about our commitment to diversity on our candidate FAQs page here: tinyurl.com/bd8xsnrj