Flexa
Accurx • London, England, United Kingdom

Information Security Officer

1–2 days/week at home

Core hours 10–4

Dog friendly

Job Description

At Accurx, we're on a mission to make patients healthier and healthcare staff happier.

Who are Accurx?

We’re a fast-growing health technology company which makes it easier for patients and healthcare teams to communicate.

Accurx is where conversations happen with and about patients. Our software helps doctors, nurses, pharmacists and administrators and other professionals to seamlessly connect with both patients and each other.

Our mission is simple: everything we do is to make patients healthier and healthcare staff happier. Today, Accurx is used in 98% of GP practices nationwide and every day more healthcare professionals are using our software in hospitals, pharmacies, care homes and the community.

We’re passionate about staying close to our users, which is why everyone at Accurx visits a GP practice at least twice a quarter to understand how a practice runs, the difficulties they face with technologies and how we can help.

Although we’ve initially tackled the UK healthcare system, we have big ambitions to improve healthcare systems across the world in the future. If you want to hear from some of our Accufolk about what it's like to work for us, take a look at a video from our 2022 summer conference!

Life as a Information Security Officer at Accurx

This is an exciting new role within Accurx’s newly formed and multi-disciplinary Information Risk Team. As part of your role you will help the team drive a security-first culture across the organisation, through awareness, policy management and stakeholder management. You will also work alongside the Information Governance and Privacy SMEs within the team, in helping to comply with regulatory requirements and health data standards. You will support the Information Risk Lead and CISO with communicating and driving an information security strategy, aimed at continuous improvement of our security controls, processes and technologies. You will also manage our compliance to ISO 27001, supporting teams across the organisation in being compliant and in putting in sustainable and scalable information security processes and controls.

Some of your responsibilities will include:

  • Work with the rest of the Information Risk Team to create an information security risk management framework that will enable a risk-based approach to security across the business.
  • Advising system owners, heads of department and other relevant stakeholders on security best practices and how best to implement information security requirements.
  • Maintaining and developing Accurx’ information security policy framework in a way which aligns with our company objectives.
  • Identifying, implementing and monitoring the organisation’s security controls framework.
  • Building sustainable and scalable processes that will allow us to maintain our ISO 27001 certification.
  • Conduct, document and communication information risk assessments across the business, reflecting business-defined risk criteria and scope.
  • Create, document and monitor information risk treatment plans in collaboration with business stakeholders across the organisation.
  • Drive Accurx’s information security and risk management strategy.
  • Build, communicate and continuously update a holistic controls framework that reflects the business risk appetite.
  • Work closely with responsible senior owners in addressing compliance gaps by amending and adapting any required as deemed necessary.
  • Identify gaps in information security processes and work closely with the rest of the Information Risk Team to create and implement new processes.
  • Increase the security awareness across the whole organisation and help embed security in the organisation's culture.
  • Monitor effectiveness of information security processes and controls.

What the team say ...

“This is a really exciting time to join the Information Risk Team: the team has recently been formed, meaning that we have the unique opportunity to shape up and implement a security strategy programme across an incredible and mission-driven business” - Diana Borcila, Information Risk Lead

We'd really like to hear from you, if ...

  • You have experience working or have a good understanding of managing and driving an ISO 27001 audit within an organisation.
  • You are knowledgeable on information security frameworks like NIST; CIS Controls; ISO 27002 and have the ability to adapt such frameworks within business processes, aligning information security control requirements to business objectives.
  • You have the ability to engage with staff in order to offer guidance on the implementation of information security policies.
  • You have experience of driving security projects forward through culture change within an organisation.
  • You have experience building and driving an information security awareness program, aimed at impacting culture change.
  • You are an objective driven individual, with knowledge on how to build measurable and meaningful information security practices across organisations.
  • Any relevant Information Security certifications such as CISM, CISA, CISSP, SSCP will be considered an asset.
  • You're mission-driven: you care about positively impacting the lives of millions
  • You’re always collaborating: you place team success over personal success and you enjoy working in an open, collaborative environment.
  • You demonstrate responsible ownership: when you see something not working, you'll flag it and be part of the solution
  • You seek continuous improvement: you’re always developing new skills and insights, while exploring ways to do things better
  • You’re mindful of balance: you're conscious of your own health and that of others. You think carefully about how best to focus your efforts, knowing when to push yourself to reach a goal.

Salary & Benefits package:

  • £65,000 - £80,000 + the value of £31,500 share options
  • £1,000 annual learning & development budget and a £500 annual wellness budget
  • Enhanced parental leave policy
  • Prayer, meditation and breastfeeding room
  • In house therapists available daily
  • Working abroad policy
  • We have our very own Chef! Free healthy breakfasts, snacks and lunches will be provided, with the occasional sweet treat!
  • And much more.

Diversity & Inclusion

Accurx is committed to being an inclusive employer - you can find out more about this commitment here. As part of this, we’re glad to accommodate candidates who need adjustments throughout the interview process.

We work in partnership with Stonewall as part of their Diversity Champions program. This is because we believe in a world where all LGBTQ+ people are free to be themselves and can live their lives to the full. Inclusive workplaces have a huge part to play in making this world a reality.

We've officially been accredited as a flexible workplace by Flexa® Careers.

Remote Working?

We offer the team the option to work from home 2 days a week. Read more about our policy here.

Want to do a little more research before you apply?

Head over to our main careers page to find out more about the team and our employee handbook. You can also find out more about us on Medium, LinkedIn and Twitter & Instagram.

Our YouTube channel is full of demos of our product, webinars we have held with our users and some clips about life at Accurx.

Company benefits

Enhanced maternity leave – 9 weeks full pay
Enhanced paternity leave – 9 weeks full pay
Adoption leave – No difference to maternity/paternity leave
Shared parental leave – 9 weeks additional leave at full pay before your child's 5th birthday (this also applies to new joiners who have children under the age of 5)
Work from anywhere scheme – work from abroad scheme, book up to two weeks at a time.
28 days annual leave + bank holidays
Work from home allowance
Pregnancy loss leave
Teambuilding days
Teambuilding holidays
Dog friendly office
Wellbeing allowance
Compassionate leave
In office massages
In office catering
In office yoga classes
Faith rooms
Cycle to work scheme
Salary sacrifice
Matched pension contribution
Share options
Hackathons
L&D budget
Location
74%
Employees are largely happy with their working location freedom
Hours
81%
Employees are very happy with the flexibility in the hours they work
Benefits
78%
Employees are largely happy with the benefits their company offers
Work-life balance
73%
Employees feel that they can switch off quite easily from work
Role modelling
74%
Employees feel that most people work flexibly
Autonomy
85%
Employees feel they have complete autonomy over getting their work done

Working at Accurx

Company employees

250

Gender diversity (male:female)

45% Male : 55% Women

Office locations

Liverpool Street, London

Funding levels

£36m in Series A & B

Hiring Countries

United Kingdom

Awards & Achievements

Most flexible companies

Most flexible companies

Flexa100 2024
Healthtech & Healthcare

Healthtech & Healthcare

Industry awards 2023
Healthtech & Healthcare

Healthtech & Healthcare

Industry awards 2022