Accessibility Links
This vacancy has now expired.
 

Information Security Manager

  • Job reference: RLC295
  • Location: Derby, Derbyshire
  • Job type: Permanent
  • Area of Expertise: Corporate Services
Closes in:
d h m s
Hurry ending soon!
Send jobs like this to my email
Job description: Job Title - Information Security Manager
Contract - Permanent - Full time - 37 hours/week
Salary - £49,700 - £57,300 (dependant on experience)
Location - Derby

The Role
In this role, you will be tasked with ensuring that key security issues are considered and for creating a general ISMS for the business. You will create logical security policies, policing security, liaising with audit teams and investigations where necessary. You will work with 3rd parties to ensure compliance around IT Security and Information Security, including PCI, and FCA, CQC, ISO27000 and ICO guidance. You will maintain and report on critical risks.
You will be the information security authority for the organization responsible for ensuring that all new information security risks are identified and managed. The role will be a critical decision maker to ensure our technology remains secure as we progress our merger and technology change program.

Main accountabilities -

*To provide a consultancy-based approach for Information Security and Data protection whilst adhering to governmental and contractual obligations, both in BAU work and projects
*Budget responsibility: £100-200k
*Responsible for creating a security strategy for the business, security audits, tests and remediation work.
*Ensure that core data retains its Confidentiality, Integrity and Availability.
*Develop, implement and manage an Information Security and IT Risk framework for the new merged organization.
*Working collaboratively with internal customers and other stakeholders, to own, operate and outline IT data and physical Information Security policies and best practice.
*Monitor service providers for compliance and ensure product owners are operating within information security standards set
*Ensure annual penetration tests, and regular security scanning are implemented and that day to day monitoring is deployed and prioritized. Ensure that any issues are identified and managed.
*Provide training and educational guidance material; ensuring the Information Security Policy (ISP) is understood and followed
*Updating and maintaining the IT Security risks as part of the Corporate Governance structure
*Ensure a robust BCP response for MTVH technology, as part of the overall BCP plan.

The Candidate

*Management of staff including a Cyber Security apprentice Key experience and qualifications required
*Practical experience of running a specialist IT security service within an organization
*Strong working knowledge of information security policies, processes and procedures
*Experience of designing a security strategies in line with business requirements
*Knowledge of Information Security best practice frameworks (Cyber Essentials, ISO27001, etc.)
*Knowledge and experience of Information Risk management, BCP and DR planning
*Relevant professional recognition, e.g. ISO 27001 award, Certified Information Security Manager or Certified Security Testing Professional
*Experience managing remediation plans and deploying solutions across a complex business.
*Experience as a technical authority, especially the prioritization and monitoring of agreed outcomes.
*Experience of Security auditing and Penetration tests, as well as management of day to day security monitoring.
*Implementation of a Cyber security framework
*Validity of data security and/or its communication medium within a bid/tender/process
*Changes in process following an audit
*Whether a breach has been committed
*To enact the IT disaster recovery plan, or part thereof
*Vendor selection and management decisions for Security tools

If you are interested in this position and meet the above criteria, please send you CV now for consideration.
If you require any additional information regarding the position, please call Ryan at Service Care Solutions on 01772 208 966 or send an E-Mail to ryan.curwen@servicecare.org.uk