This job is no longer available.
You can view related vacancies or set-up an email alert notification when similar jobs are added to the website using the buttons below.

Information Security Manager

jk2111_1542809513
£55000 - £65000 per annum 15% bonus

Managing this Role

Josh Keeley

Manager - Cyber Specialist 0207 759 7878

With six years’ experience as an IT engineer within the Royal Marines, Josh has a strong network of ex-services CTI analysts and CCTIM qualified managers. Bringing sound technical knowledge and in-depth market expertise, Josh works with consultancies, defence, MSSPs and TIPs; from rapidly-growing start-ups to established global enterprises.

 

Roles recruited: CTI analysts, CCTIM managers

Seniority: Junior-Senior

Job Type: Permanent

Geographical coverage: London

Market: Cyber threat intelligence, TIP’s and Professional Services

We are working with a global communications organisation who are building out their Information Security team in London. They have recently just been accredited with ISO 27001 and Cyber Essentials, so this Manager who reports to the Director of GRC will play a vital part in the continuous improvement of their ISMS; in order to keep the status.

The candidate will manage Risk Treatment Plans and maintain Plan of Actions and Milestones for those risks; and will assist in the management and delivery of projects across a wide spectrum of initiatives.

Key Responsibilities:

  • Oversee, evaluate, and support the documentation, validation and assessment of Information Security Management System processes necessary to assure that existing and new information and information processing systems meet the organization's cybersecurity and risk requirements
  • Ensure appropriate treatment of risk, compliance, and assurance from internal and external perspectives
  • Conduct comprehensive assessments of the management, operational, and technical security controls and control enhancements employed within or inherited by an information and information processing systems, assisting the security engineering team to prioritise corrective actions
  • Build strong relationships within the organisation to support and enhance a high performing collaborative approach to achieve departmental goals
  • Manage the agenda of the Information Security Steering Committee
  • Manage the internal audit plan leading to ISO 27001 re-certification
  • Lead, coordinate, communicate, integrate, and be accountable for the overall success of the risk management program, ensuring alignment with agency or enterprise priorities

Essential Knowledge and Skills:

  • Demonstrable knowledge and previous work experience of risk management processes (e.g., methods for assessing and mitigating risk)
  • Demonstrable knowledge and previous work experience of ISO 27000 family of standards
  • Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy
  • Proficiency in developing and applying ISO 27001 standards in a critical infrastructure operational environment
  • Ability to communicate complex information, concepts, or ideas in a confident and well organized manner through verbal, written, and/or visual means

Desirable Knowledge and Skills:

  • Knowledge of NIST family of standards
  • Knowledge of applicable business processes and operations of customer organizations
  • Knowledge of specific operational impacts of cybersecurity lapses
  • Working understanding of applying ISO 27001 controls in a satellite communications operational environment
  • Formal education or qualifications in Information Security preferred (e.g. CISSP)
  • ISO 27001 Certified Lead Auditor
  • ISO 27001 Certified Lead Implementer

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.


This job has now been filled but you may be interested in:

 

Cyber Project Manager

Project Manager London

Blackthorn Trace has partnered with an innovative and market leading Business management consultancy based in the heart of London. They are looking to bring on a Project Manager based in their head office in London but should be expect to travel and work on client sites.

Key Responsibilities

o Good overall awareness of the key drivers of cyber security across all aspects of people, process, technology, information and culture

o Good overall awareness of the common components of a typical technology estate (client, server, network, storage, cloud services)

o Familiarity with relevant cyber security standards, to include NIST CSF, ISO 27001 and broader views of good practice e.g. Cyber Essentials

o Qualifications that are directly relevant (e.g. CISA, CISSP, CISM, CRISC) are desirable but not essential

Project and Programme Delivery Responsibilities

o Good overall awareness of the project and programme delivery lifecycle, to include the development of plans and budgets, tracking of outputs / outcomes, resourcing, management of risks / issues and stakeholder engagement

o Familiarity with recognised standards for project or programme delivery

o Qualifications that are directly relevant (e.g. APM, Prince2) are desirable but not essential.

This is a unique opportunity to be part of a leading consultancy and if this sounds like you apply now!

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.

Cyber Security Manager

This is your chance to help create a long lasting Cyber Security function for a well known Media company in London who will provide you with the flexibility and freedom that you are looking for! We are looking for a Cyber Security Manger to work across multiple areas including finance, legal and infrastructure. You will also be working alongside the Risk Director to help secure the Cyber risk to the company.

You will play a key part in my clients Cyber lifecycle by helping lead policy and standards implementation, training of junior members of the team, provide your own recommendations on how to improve current SOP's and on a whole ensure the Cyber teams are at an effective constant state of readiness.

The role

  • Build and maintain strong relationships with key stakeholders at all levels
  • Helping address enquires from colleagues in the business and in technology and taking ownership of issues from start to finish.
  • Build, develop and maintain a robust, pragmatic risk management capability that can accurately capture Cyber operational and strategic risks
  • Supporting core capabilities across the team including colleague awareness, incident management, vulnerability management and data loss prevention.
  • Build a robust but pragmatic Cyber policy and technical standards framework that acts as a positive enabler for suppliers, group technology and the business.

Additional

Take ownership in supporting internal audits and necessary follow ups

  • Proactively identify gaps within our Vulnerability management capability and drive forward recommendations and improvements and mitigation plans.
  • Support the Head of Cyber Security on new initiatives and provide input into roadmap and budgetary cycles.
  • Take the lead in managing cyber security incidents within specific business divisions and ensure communication across security and technology teams.
  • Liaise closely with business owners to identify changes to the business and be proactive in understanding the security implications of such changes and advise appropriately.
  • Work with the privacy lead for Shared Services to identify any control gaps in relation to protecting data so that these can be highlighted and actioned effectively.
  • Manage the vendors in the delivery of cyber security services ensuring theyprovide an effective service to reduce the overall risk exposure and support business processes such as privilege access management, vulnerability management and penetration testing

Prefered Certifications

  • CISSP
  • CISM
  • ISO 27001 Lead Auditor/Lead Implementer
  • Experience implementing Cyber Essentials Plus

This is an exciting opportunity to gain a lot of experience in a role that is flexible and rewarding and will give you the freedom to increase your skill set whilst playing an integral in a company that requires an innovative and dynamic workforce!

If this sounds like an opportunity you would strive in then get in touch now!

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.

Information Security Manager

Information Security Manager London £80,000-90,000

We are working with one of the world's fastest growing sports technology companies that provide real time data solutions for sports, media and regulated betting markets. They are looking to bring on an experienced Information Security Manager with extensive technical security knowledge and expertise who will be responsible for implementing operational cybersecurity throughout the company.

Main Responsibilities:

  • Being a subject matter expert on all aspects of operational information security and cyber risk
  • Manage and oversee security penetration testing activities including 3rdparty vendor relationships
  • Manage and report on the implementation of security industry standards and best-practices standards, such as Cyber Essentials or ISO27001
  • Providing Information Security guidance across IT operations and new projects
  • Manage information security investigations
  • Manage operations of the cybersecurity vulnerability program across the firm
  • Oversee Security Operations Centre (SOC) activities, threat and incident responses
  • Identify, assess and drive process around emerging security threats and vulnerabilities that could affect the firm and users of its information
  • Driving technical implementation to meet Data Protection regulatory requirements
  • Carry out security risk assessments
  • Implementing technical & non-technical controls to improve Information Security and IT Infrastructure
  • Develop in collaboration security architecture, standards and best practice for the business

Required Skills

  • Significant experience in Information Security management
  • A degree level cyber risk professional, or equivalent experience
  • Recognised security qualifications such as CISSP/CISM
  • Track record of achievement and delivery within various operational information security roles
  • Extensive knowledge of technical security issues and solutions
  • Extensive knowledge of cyber threats, penetration testing, and vulnerability assessments
  • Understanding of cloud security controls in AWS and/or Azure
  • Experience in working alongside business stakeholders in a dynamic and agile tech environment
  • Experience with of widely used IT security control products/protocols
  • Good communication skills, articulate, organised, diligent and pragmatic

This is a unique opportunity to be part of a global organisation and if this sounds like you apply now!

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.