Information Security Manager

  • Reference IP31269-NH-DS
  • Salary £48,000 - £50,000
  • Location Cardiff
  • Job type Permanent

Working on an initial 12-month, fixed term contract, the Information Security Manager plays a crucial role in ensuring the security of the information and applications. This role will develop, lead on, and deliver several essential cyber security and information risk management initiatives. The successful Information Security Manager will be responsible for defining, setting, and documenting the Security Architecture, its principles, processes, and technology, and will be responsible for monitoring compliance and alignment to this architecture.

Other aspects of the role will include IT Disaster Recovery Management, Compliance Management, and the management of various suppliers of security services.
To apply for this position, you will be able to demonstrate the following experience:

• Security Architecture design
• Working as part of a Cyber Security Incident Response Team (CSIRT)
• Enterprise security design preferably with MS Azure, Amazon Cloud Services, Solaris, Linux, Windows, Avaya, and leading ERP solutions
• Undertaking audit and/or formal assessor related activities for organizations within the field of cyber security
• Skilled in the management of cyber forensics, particularly the importance of maintaining forensic integrity during an investigation using suitable formal guidelines
• Performing security audits, risk assessments, assurance work and self-assessments
• Experience of implementing ISO 27001

As the successful Information Security Manager, you will be responsible and involved in the following:

• Deliver several key IA related initiatives including an Enterprise Wide Data Classification program
• Undertakes formal compliance monitoring and ensures that breaches are identified, addressed and remediated
• Drive security best practice in various domains including Access Management, Cryptography, Cloud Computing and Storage, Data Governance etc
• Undertakes formal risk assessments against applications, processes and prospective solutions
• Continuously improve and enhance the cyber security framework based on leading standards including CIS Critical Controls, COBIT5, ISO 27001, CESG and NIST frameworks
• Manage key compliance programs including, where appropriate, ISO 27001.
• Produces quality reporting and associated management information on the state of information security, IA work streams, risk exposure and threat management
• Undertakes IT Disaster Recovery planning and design

For immediate consideration, apply today for an initial confidential call back.

Sign up for industry updates