Roles Security

Information Security Manager – Fully Remote

  • Location: London
  • Type: Permanent
  • Payment: £65000 - 70000
  • Per: Annum
  • Role: Security

Posted by : Chris Parsons

Email : chris.parsons@intecselect.com

Information Security Manager – Fully Remote

Fully Remote
Up to circa £70,000 + excellent bens
Hours: Core: 9am – 2:30pm, 40 hours per week (manage your own time)

An excellent opportunity has arisen with an exciting SaaS company who work with some of the world’s biggest brands. The Information Security Manager role is the focal point for information security and compliance, driving and overseeing company wide infosec risk management. Providing some independence from IT operations and 3rd parties, this role provides confidence to the Executive team that infosec risk is well managed.

Responsibilities:

Infosec strategy and improvement programme:
§Maintain and manage the over-arching information security strategy, specific strategies and a programme of enhancements
§Communicate infosec goals and change activities to the wider business to ensure engagement and success
§Ensure sufficient understanding of business objectives to assess the impact of change and advise accordingly
§Drive general alignment with ISO27001 principles for the management of our most confidential data

Policies and procedures:
§Maintain InfoSec policies and procedures in line with risk appetite and good practice
§Infosec risk management, governance and reporting:
§Maintain internal risk and control register, with general alignment to ISO27001 where in scope
§Keep appropriate records and provide periodic business reports to the Executive Team and Board Audit, Risk and Quality Committee
§Maintain and manage business DR and BCP plans

Subject matter expertise & continuous improvement:
§Maintain awareness of the relevant regulation and legislation, e.g. ISO27001
§Maintain awareness of a broad range of technologies including common vulnerabilities
§Support the implementation of new/improved controls to strength the information security
§Manage the RFI response process

Communicating, training and awareness:
§Provide advice and input on the risk aspects of change activity to ensure it has been considered and is taken into account appropriately
§Define and run information security awareness and training for all staff and provide introductory training for all new staff

Assurance:
§Manage reviews/audits, managing and addressing any resultant findings
§Review the internal control environment regularly to identify weaknesses or gaps in line with industry control standards
§Develop and manage third party supplier security monitoring framework
§Identify and challenge behaviours or activities that contravene risk policies and procedures
Requirements:
§Degree in Technology, Security, Information Governance or related field and / or validated experience which shows an ability to operate effectively
§Professional security qualifications and certifications such as CISSP, CISM, CISA, ISMS RM, CIS RM, ISO27001 or equivalent experience
§Knowledge of infosec security, risk and control frameworks such as ISO 27001, 9001, CobiT and ITIL
§Good knowledge of the latest trends in information security and risk management, e.g. evolving technologies, Cyber risk mitigation, etc.
§Work autonomously and pro-actively
§Understanding when to escalate issues so that they are handled appropriately
§Good relationship management skills

Apply for this role

Other vacancies

Security

  • London
  • £65000 - 70000
  • Permanent
  • 19th Oct

J3355

Security

  • London
  • £65000 - 70000
  • Permanent
  • 19th Oct

J3423

Security

  • London
  • £65000 - 70000
  • Permanent
  • 19th Oct

J3427