Accessibility Links
This vacancy has now expired.

Information Security Manager

  • Job reference: 19643
  • Location: Twickenham, Middlesex
  • Job type: Permanent
  • Area of Expertise: IT
Closes in:
d h m s
Hurry ending soon!
Send jobs like this to my email
Job description: Information Security Manager
A large, London-based, housing association are looking to recruit an Information Security Manager to that key security issues are considered and for creating a general ISMS for the business. The role will be based in Twickenham.

The Role
In this role, you will be tasked with ensuring that key security issues are considered and for creating a general ISMS for the business. You will create logical security policies, policing security, liaising with audit teams and investigations where necessary. You will work with 3rd parties to ensure compliance around IT Security and Information Security, including PCI, and FCA, CQC, ISO27000 and ICO guidance. You will maintain and report on critical risks.
You will be the information security authority for the organization responsible for ensuring that all new information security risks are identified and managed. The role will be a critical decision maker to ensure our technology remains secure as we progress our merger and technology change program.
Main accountabilities will also include the following:
*To provide a consultancy-based approach for Information Security and Data protection whilst adhering to governmental and contractual obligations, both in BAU work and projects
*Budget responsibility: £100-200k
*Responsible for creating a security strategy for the business, security audits, tests and remediation work.
*Ensure that core data retains its Confidentiality, Integrity and Availability.
*Develop, implement and manage an Information Security and IT Risk framework for the new merged organization.
*Working collaboratively with internal customers and other stakeholders, to own, operate and outline IT data and physical Information Security policies and best practice.
*Monitor service providers for compliance and ensure product owners are operating within information security standards set
*Ensure annual penetration tests, and regular security scanning are implemented and that day to day monitoring is deployed and prioritized. Ensure that any issues are identified and managed.
*Provide training and educational guidance material; ensuring the Information Security Policy (ISP) is understood and followed
*Updating and maintaining the IT Security risks as part of the Corporate Governance structure
*Ensure a robust BCP response for MTVH technology, as part of the overall BCP plan.
*Act as the technical authority for cyber security issues and Work with infrastructure teams to ensure compliance

The Candidate
To be considered for this role, you will require demonstrable experience of the following:
*Management of staff including a Cyber Security apprentice Key experience and qualifications required
*Practical experience of running a specialist IT security service within an organization
*Strong working knowledge of information security policies, processes and procedures
*Experience of designing a security strategies in line with business requirements
*Knowledge of Information Security best practice frameworks (Cyber Essentials, ISO27001, etc.)
*Knowledge and experience of Information Risk management, BCP and DR planning
*Relevant professional recognition, e.g. ISO 27001 award, Certified Information Security Manager or Certified Security Testing Professional
*Experience managing remediation plans and deploying solutions across a complex business.
*Experience as a technical authority, especially the prioritization and monitoring of agreed outcomes.
*Experience of Security auditing and Penetration tests, as well as management of day to day security monitoring.
*Implementation of a Cyber security framework
*Validity of data security and/or its communication medium within a bid/tender/process
*Changes in process following an audit
*Whether a breach has been committed
*To enact the IT disaster recovery plan, or part thereof
*Vendor selection and management decisions for Security tools

The Package
This is a full time position, working 37 hours per week.
The salary on offer is £55,300 - £63,700 dependent on experience

How to Apply
To discuss the role in more detail, please feel free to call Lee at Service Care Solutions on 01772 208 966.
If you wish to apply for the role, please send your CV to Lee via email - lee.mcmillan @ servicecare. org. uk