Head of UK Information Security and Risk

Project Manager London

Blackthorn Trace has partnered with an innovative and market leading Business management consultancy based in the heart of London. They are looking to bring on a Project Manager based in their head office in London but should be expect to travel and work on client sites.

Key Responsibilities

o Good overall awareness of the key drivers of cyber security across all aspects of people, process, technology, information and culture

o Good overall awareness of the common components of a typical technology estate (client, server, network, storage, cloud services)

o Familiarity with relevant cyber security standards, to include NIST CSF, ISO 27001 and broader views of good practice e.g. Cyber Essentials

o Qualifications that are directly relevant (e.g. CISA, CISSP, CISM, CRISC) are desirable but not essential

Project and Programme Delivery Responsibilities

o Good overall awareness of the project and programme delivery lifecycle, to include the development of plans and budgets, tracking of outputs / outcomes, resourcing, management of risks / issues and stakeholder engagement

o Familiarity with recognised standards for project or programme delivery

o Qualifications that are directly relevant (e.g. APM, Prince2) are desirable but not essential.

This is a unique opportunity to be part of a leading consultancy and if this sounds like you apply now!

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.

This is your chance to help create a long lasting Cyber Security function for a well known Media company in London who will provide you with the flexibility and freedom that you are looking for! We are looking for a Cyber Security Manger to work across multiple areas including finance, legal and infrastructure. You will also be working alongside the Risk Director to help secure the Cyber risk to the company.

You will play a key part in my clients Cyber lifecycle by helping lead policy and standards implementation, training of junior members of the team, provide your own recommendations on how to improve current SOP's and on a whole ensure the Cyber teams are at an effective constant state of readiness.

The role

• Build and maintain strong relationships with key stakeholders at all levels
• Helping address enquires from colleagues in the business and in technology and taking ownership of issues from start to finish.
• Build, develop and maintain a robust, pragmatic risk management capability that can accurately capture Cyber operational and strategic risks
• Supporting core capabilities across the team including colleague awareness, incident management, vulnerability management and data loss prevention.
• Build a robust but pragmatic Cyber policy and technical standards framework that acts as a positive enabler for suppliers, group technology and the business.

Additional

Take ownership in supporting internal audits and necessary follow ups

• Proactively identify gaps within our Vulnerability management capability and drive forward recommendations and improvements and mitigation plans.
• Support the Head of Cyber Security on new initiatives and provide input into roadmap and budgetary cycles.
• Take the lead in managing cyber security incidents within specific business divisions and ensure communication across security and technology teams.
• Liaise closely with business owners to identify changes to the business and be proactive in understanding the security implications of such changes and advise appropriately.
• Work with the privacy lead for Shared Services to identify any control gaps in relation to protecting data so that these can be highlighted and actioned effectively.
• Manage the vendors in the delivery of cyber security services ensuring theyprovide an effective service to reduce the overall risk exposure and support business processes such as privilege access management, vulnerability management and penetration testing

Prefered Certifications

• CISSP
• CISM
• ISO 27001 Lead Auditor/Lead Implementer
• Experience implementing Cyber Essentials Plus

This is an exciting opportunity to gain a lot of experience in a role that is flexible and rewarding and will give you the freedom to increase your skill set whilst playing an integral in a company that requires an innovative and dynamic workforce!

If this sounds like an opportunity you would strive in then get in touch now!

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.

Information Security Manager London £80,000-90,000

We are working with one of the world's fastest growing sports technology companies that provide real time data solutions for sports, media and regulated betting markets. They are looking to bring on an experienced Information Security Manager with extensive technical security knowledge and expertise who will be responsible for implementing operational cybersecurity throughout the company.

Main Responsibilities:

• Being a subject matter expert on all aspects of operational information security and cyber risk
• Manage and oversee security penetration testing activities including 3^rdparty vendor relationships
• Manage and report on the implementation of security industry standards and best-practices standards, such as Cyber Essentials or ISO27001
• Providing Information Security guidance across IT operations and new projects
• Manage information security investigations
• Manage operations of the cybersecurity vulnerability program across the firm
• Oversee Security Operations Centre (SOC) activities, threat and incident responses
• Identify, assess and drive process around emerging security threats and vulnerabilities that could affect the firm and users of its information
• Driving technical implementation to meet Data Protection regulatory requirements
• Carry out security risk assessments
• Implementing technical & non-technical controls to improve Information Security and IT Infrastructure
• Develop in collaboration security architecture, standards and best practice for the business

Required Skills

• Significant experience in Information Security management
• A degree level cyber risk professional, or equivalent experience
• Recognised security qualifications such as CISSP/CISM
• Track record of achievement and delivery within various operational information security roles
• Extensive knowledge of technical security issues and solutions
• Extensive knowledge of cyber threats, penetration testing, and vulnerability assessments
• Understanding of cloud security controls in AWS and/or Azure
• Experience in working alongside business stakeholders in a dynamic and agile tech environment
• Experience with of widely used IT security control products/protocols
• Good communication skills, articulate, organised, diligent and pragmatic

This is a unique opportunity to be part of a global organisation and if this sounds like you apply now!

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.