Information Security Manager, £80K - Reed : Job Details

Information Security Manager, £80K, Mon-Fri onsite, Watford, HertfordshireIn the role of Information Security Manager, you will collaborate closely with the CISO to implement the IT Security Framework and maintain adherence to security governance, risk, and compliance standards. Your responsibilities will include leading a small team of two to achieve these objectives.

As an expert in the field, you will facilitate various business operations by leveraging your extensive knowledge in Security domains, which encompasses:

- Adherence to leading security standards/frameworks such as ISO27001:2022, NIST CSF, NIST SP 800-53, Zero Trust, Secure by Design, and Cloud Security models.

- Execution of Vulnerability Management processes.

- Implementation of Malware Protection strategies.

- Oversight of Third-Party Security measures.

- Deployment of robust Authentication Mechanisms.

- Management and Governance of Cybersecurity protocols.

- Handling of Security Incidents effectively.

- Ensuring Business Continuity and adept Crisis Management.

- Integration of Cybersecurity measures into projects and applications.

- Effective Asset management.

- Protection against DDoS attacks.

- Enhancement of Logging/detection systems.

- Management of Identity and Access (including Privileged Account Management).

- Fortification of Network Security measures.

Core Duties

Oversee the security team (x2) daily to achieve;

•              Handle, evolve, apply, observe, and communicate on security architecture and cyber enhancement project actions.

•              Conduct evaluations of IT security maturity and monitor security status.

•              Continuous enhancement and execution of the Cyber Security Strategy, aligning with IT & Cyber risk reduction goals.

•              Contribute insights to CISO, broader Security divisions, and collaborators when needed.

•              Collaborate with SMEs throughout the security and IT domains to guide and realize projects that adhere to and elevate global security compliance in the company.

•              Detect, evaluate, and document cyber security threats, including communication with pertinent parties.

•              Recommend comprehensive strategies for cyber security threat response, oversee progress tracking, and consistently refresh the status of each cyber threat in relevant records.

•              Execute internal and external security assurance evaluations against standards-based compliance criteria referencing top Security and Governance frameworks.

•              Plan and Manage Penetration tests.

•              Oversee Vulnerability Management including scope review and validation, performing vulnerability assessments, and leading remediation activities.

•              Monitor infrastructure (including Compliance).

•              Analyse and handle security incidents.

•              Direct security suggestions.

•              Coordinate and direct various IT Security committees.

•              Create and maintain IT Security documents (procedures, reports, analyses).

•              Engage in or lead both internal and external audits and evaluations.

•              Develop and deliver security education and awareness initiatives.

•              Support and counsel the broader enterprise on security-related subjects.

Benefits

·       Pension 5% Employer 3% Employee

·       Private Healthcare

·       24 days holiday pa plus your birthday off

·       Life Insurance x4