Connecting...

Information Security Manager

Location:

Staffordshire, England

Work type:

Permanent

Business sector:

Other

Salary:

£50000 - £60000 per annum

Job reference:

MD127_1536151952

Start date:

ASAP

Contact email:

mag.dutka@talentinternational.com

Advertiser:

Mag Dutka

Information Security Manager

Location: Staffordshire

Role: Permanent

Salary: £55,000 (Negotiable for right applicant)

Due to the Group's continuing expansion plans and to support the Groups strategy this new and exciting role has emerged to provide a professional information technology and data security risk assurance service.

Reporting to the Director of Systems Delivery and based out of the Staffordshire location this role will be the key driver of the design, delivery and embedding of the information and data security aspects of IT Security and Data Protection Strategies. The successful candidate will provide objective assurance as to the adequacy and effectiveness of IT risk management, and its associated control and governance processes.

Key Responsibilities

  • Formulating and maintaining an Information Technology and Data Security implementation plan in conjunction with the ISS team and the Internal Audit and Compliance functions to provide robust assurance to the business
  • Contributing to the design of the policies, procedures and controls required to mitigate information and data security risks into the wider business
  • Developing detailed work plans to assess and report on the business' compliance with all IT security requirements including, but not limited to, Cyber Essentials and PCI DSS
  • Promoting the continuous improvement of IT security risk management and control processes by developing a proactive, customer-focused relationship with management, ensuring that issues identified are resolved
  • Continuous improvement of MI reporting up to and including board level audience
  • Leading virtual teams and suppliers to analyse existing and new technology challenges and present solutions for approval / further investigation
  • Working with members of the Information Systems and Services leadership team to define and agree new strategies
  • Performing regular reviews with reference to ISO 27001 standards and identifying the risks created by non-compliance
  • Ensuring your own continuous professional development by participating in external networking/ conferences/ associations/ groups, to stay current on industry developments and innovations and providing encouragement, support and coaching to other team members on their own development
  • Maintaining a positive and solution oriented approach to work, providing open and honest feedback

To be successful in this position you will demonstrate the following skills, knowledge and competencies:

  • Robust experience of cyber, information and data security risks and how to ensure platforms, networks and systems are delivered and / or developed to the highest security
  • Expertise in information security technologies: Firewalls, intrusion detection, assessment tools, encryption, certificate authority, etc
  • Knowledge in information security areas such as identity and access management, security policies, processes, and procedures
  • Understanding of emerging security technologies and their impact on networks and systems
  • Experience of risk management and the performing of risk assessments
  • Cloud Experience (IaaS, PaaS, SaaS) - especially Azure
  • Experience of managing and reporting on PCI DSS along with experience of DPA / GDPR regulation in relation to Info / Data Security
  • Robust experience of managing external vendors via a partnership approach to deliver positive outcomes for the organisation
  • High level of motivation to see success delivered through their own personal efforts and those around them
  • High degree of commercial and operational awareness with the ability to generate positive commercial and operational outcomes through their influence
  • The ability to interpret technical requirements from business stakeholders and communicate complex technical matters in a non-complex way
  • Excellent interpersonal, written and verbal communication skills
  • The ability to inspire teams to think "outside of the box" and go the extra mile
  • Pro-activity and self-motivated with the proven ability to drive results
  • Excellent planning and organisation skills

Share this job:

help your friends find their dream job: