Cybersecurity Risk Manager
3 weeks ago
Cybersecurity Risk Manager
Salary: Competitive
Location: Glasgow Head Office
Shift Pattern: Days
Hours per day: Full-time
This is a permanent position.
POSITION OVERVIEW:
In this pivotal role, you will be an integral part of the second line of defense, guiding and assisting the organization in effectively managing cyber risks and safeguarding information assets. Your primary focus will be on protecting the organization from potential security threats by identifying vulnerabilities and formulating appropriate risk mitigation strategies. You will provide senior management with independent assurance regarding their cyber risk management and information protection strategies.
You will collaborate closely with the first line cyber team to ensure that business assurance plans are effectively communicated and that the requirements of the second line are well understood.
Additionally, you will lead the execution of a defined set of cyber assurance reviews, projects, and initiatives, while striving to meet the cyber assurance and compliance objectives. You will play a key role in shaping the organization's cybersecurity strategy concerning data protection, monitoring and reporting, risk assessment, incident response, business continuity, and disaster recovery.
KEY RESPONSIBILITIES
Monitoring & Evaluation
- Contribute to and uphold the existing information security risk management framework, articulating risks in business terms, identifying suitable mitigation measures, and driving their implementation to ensure the security of our information and services.
- Engage with key stakeholders to prioritize technology, process, and personnel-based security initiatives aimed at mitigating identified risks, employing continuous improvement principles to enhance our information security delivery framework.
- Participate in the annual information security business plan, which includes audits, tests, risk assessment activities, and updates to the information security delivery framework, such as policy revisions.
- Identify relevant information security activities in response to evolving standards and regulations.
- Collaborate with key stakeholders to prioritize information security and compliance initiatives.
- Conduct security risk assessments and adversarial testing to determine proportionate risks, advising on relevant enhancements to the information security delivery framework.
- Ensure that data security measures are in place to comply with our policies.
Response & Remediation
- Address information security incidents in accordance with established standards and processes, meeting or exceeding agreed KPIs.
- Follow a regular schedule of security and data protection compliance audits and tests, taking necessary actions to mitigate any identified risks.
- Assist in the development of the organization's disaster recovery and business continuity plans.
- Collaborate with internal departments and external partners to identify and mitigate information security-related risks.
- Initiate and promote activities to enhance information security and data protection awareness throughout the organization and its partners.
- Serve as the primary contact for supervisory authorities and individuals whose data is processed.
- Engage in activities related to information security and compliance, including awareness training, data migrations, security enhancements, breach management, and data protection-related inquiries.
- Provide support in business development proposals and responses.
- Undertake other duties as deemed appropriate for the role and skill set.
Team Leadership
- Contribute to and execute the development hiring plan for the team, including sourcing, screening, and interviewing candidates.
- Conduct regular one-on-one meetings with all direct reports.
- Establish team goals and technical direction, ensuring alignment with the objectives of the Technology and Information Security roadmaps.
- Set personal goals for each team member, ensuring alignment with team objectives.
- Implement effective engineering processes and policies that emphasize quality and continuous improvement.
- Act as a deputy for the Head of Information Security when required.
REQUIRED KNOWLEDGE, SKILLS & ABILITIES
Essential
- Degree-level qualification or equivalent experience in Cyber risk management and information protection.
- Understanding of cybersecurity fundamentals.
- Familiarity with ISO 27001 and NIST CSF.
- Strong technical background in Data Classification and Data Loss Prevention.
- Experience in information security governance, policy, and procedure development.
- Proficiency in administering Active Directory, Azure AD, Windows File Services, SharePoint, and Office 365.
- Experience in implementing Microsoft Purview and overseeing its configuration.
- Broad technical knowledge (database, web application development, infrastructure, etc.).
- Strong analytical and decision-making skills based on risk assessment.
- Business acumen and effective communication skills across all organizational levels.
- Pragmatic and adaptable approach to problem-solving.
- Excellent interpersonal skills and creativity.
Desirable
- Certifications such as CISSP, CRISC, or CISM.
- Knowledge of EU GDPR and PCI-DSS.
- Experience with Cloud, Hybrid, and Global Enterprise networks.
- Familiarity with audit and risk assessment processes.
- Proven ability to conduct audits, develop controls, and perform risk assessments.
- Experience in managing third-party relationships.
- Ability to analyze complex business processes and technologies to provide sound recommendations to non-technical stakeholders.
ABOUT THE COMPANY
City Refrigeration Holdings, founded in 1985 by Willie and Susan Haughey, is dedicated to transforming the facilities management industry through collaboration and transparency. The company has evolved from its modest beginnings into a globally recognized leader in facilities management, employing over 12,000 individuals and operating across Europe, Australia, North America, and Asia. City Facilities Management Holdings Ltd is committed to delivering unparalleled professionalism, quality, customer service, and value to its partners worldwide.
-
Cybersecurity Risk Manager
3 weeks ago
Glasgow, Glasgow City, United Kingdom Be-IT Full timeCyber Risk Management DirectorGlasgow HybridAre you an experienced professional in the realm of cyber risk and information security? Do you excel in a fast-paced setting, guiding teams to protect organizational operations from emerging security challenges? If this resonates with you, we have an exciting opportunity.Role Overview:Our client is in search of a...
-
Cybersecurity Risk Manager
3 weeks ago
Glasgow, Glasgow City, United Kingdom Be-IT Full timeCyber Risk Management SpecialistGlasgow HybridAre you an experienced professional in the realm of cyber risk and information safeguarding? Do you excel in a fast-paced environment, steering teams to protect organizational operations from emerging security challenges? If this resonates with you, we have an exciting opportunity.Position Overview:Be-IT is in...
-
Cybersecurity Risk Manager
6 days ago
Glasgow, Glasgow City, United Kingdom Be-IT Full timeAbout the RoleWe are seeking a seasoned expert in cyber risk management and information protection to join our team as an Information Security Manager. This pivotal role will involve leading efforts to manage cyber risks, ensuring the business is protected from security threats.Key Responsibilities:Risk Management: Develop and maintain our information...
-
Cybersecurity Risk Manager
3 weeks ago
Glasgow, Glasgow City, United Kingdom Be-IT Full timeCyber Risk and Security Operations ManagerRemote or Hybrid Work OptionsAre you an experienced professional in the realm of cyber risk management and data security? Do you excel in fast-paced environments, guiding teams to protect organizational operations from emerging security challenges? If this resonates with you, we have an exciting opportunity.Role...
-
Cybersecurity Risk Manager
6 days ago
Glasgow, Glasgow City, United Kingdom Be-IT Full timeAbout the Role: We are seeking a seasoned expert in cyber risk management and information protection to join our 2nd Line of defence team at Be-IT. In this pivotal role, you will lead efforts to manage cyber risks, ensuring the business is protected from security threats. Your expertise will guide the identification of risks and the development of effective...
-
Cybersecurity Risk Management Lead
5 days ago
Glasgow, Glasgow City, United Kingdom Be-IT Full timeAbout the RoleWe are seeking a seasoned expert in cyber risk management and information protection to join our team as an Information Security Manager. As a key member of our 2nd Line of Defence, you will lead efforts to manage cyber risks and ensure the business is protected from security threats.Key ResponsibilitiesLead the development and implementation...
-
Cybersecurity Risk Manager
4 days ago
Glasgow, Glasgow City, United Kingdom City Facilities Management Holdings Ltd Full timeCybersecurity Risk Manager Salary: Competitive Location: Glasgow Head Office Shift Pattern: Days Hours per day: Full-time This is a permanent position. POSITION OVERVIEW: This role is situated within the second line of defense, where you will oversee and assist the organization in effectively managing cyber threats and safeguarding...
-
Cybersecurity Risk Manager
3 weeks ago
Glasgow, Glasgow City, United Kingdom City Facilities Management Holdings Ltd Full timeCybersecurity Risk Manager Salary: Competitive Location: Glasgow Head Office Shift Pattern: Days Hours per day: Full-time This is a permanent position. POSITION OVERVIEW: This role is situated within the second line of defense, where you will oversee and assist the organization in effectively managing cyber threats and safeguarding...
-
Cybersecurity Risk Manager
3 days ago
Glasgow, Glasgow City, United Kingdom City Facilities Management Holdings Ltd Full timeCybersecurity Risk Manager Salary Competitive Location: Glasgow Head Office Shift Pattern: Days Hours per day: Full-time Position Overview: This role is situated within the second line of defense, where you will lead and support the organization in effectively managing cyber risks and safeguarding information. Your primary responsibility will...
-
Cybersecurity Risk Manager
3 weeks ago
Glasgow, Glasgow City, United Kingdom City Facilities Management Holdings Ltd Full timeCybersecurity Risk Manager Salary Competitive Location: Glasgow Head Office Shift Pattern: Days Hours per day: Full-time Position Overview: This role is situated within the second line of defense, where you will lead and support the organization in effectively managing cyber risks and safeguarding information. Your primary responsibility will...
-
Cybersecurity Risk Manager
4 days ago
Glasgow, Glasgow City, United Kingdom City Facilities Management Holdings Ltd Full timeCybersecurity Risk Manager Salary: Competitive Location: Glasgow Head Office Shift Pattern: Days Hours per day: Full-time This is a permanent position. POSITION OVERVIEW: In this pivotal role, you will be part of the second line of defense, where you will guide and assist the organization in effectively managing cyber threats and...
-
Cybersecurity Risk Manager
3 weeks ago
Glasgow, Glasgow City, United Kingdom City Facilities Management Holdings Ltd Full timeCybersecurity Risk Manager Salary: Competitive Location: Glasgow Head Office Shift Pattern: Days Hours per day: Full-time This is a permanent position. POSITION OVERVIEW: In this pivotal role, you will be part of the second line of defense, where you will guide and assist the organization in effectively managing cyber threats and...
-
Cybersecurity Risk Manager
4 days ago
Glasgow, Glasgow City, United Kingdom City Facilities Management Holdings Ltd Full timeCybersecurity Risk Manager Salary: Competitive Location: Glasgow Head Office Shift Pattern: Days Hours per day: Full-time This is a permanent position. POSITION OVERVIEW: In this pivotal role, you will be part of the second line of defense, guiding and supporting the organization in effectively managing cyber risks and safeguarding...
-
Cybersecurity Risk Manager
3 weeks ago
Glasgow, Glasgow City, United Kingdom City Facilities Management Holdings Ltd Full timeCybersecurity Risk Manager Salary: Competitive Location: Glasgow Head Office Shift Pattern: Days Hours per day: Full-time This is a permanent position. POSITION OVERVIEW: In this pivotal role, you will be part of the second line of defense, guiding and supporting the organization in effectively managing cyber risks and safeguarding...
-
Cybersecurity Manager
6 days ago
Glasgow, Glasgow City, United Kingdom Net Talent Full timeAbout the RoleNet Talent is partnering with a leading logistics company to find their first IT Security Manager.This is a unique opportunity to join a dynamic team and shape the company's IT security posture.Key ResponsibilitiesLeadership & Strategy:Lead and manage a small cybersecurity team, including recruitment, mentoring, and performance...
-
Cybersecurity Manager
3 days ago
Glasgow, Glasgow City, United Kingdom Net Talent Full timeAbout the RoleNet Talent is partnering with a leading logistics company to find their first IT Security Manager.This is a unique opportunity to join a dynamic team and shape the company's IT security posture.Key ResponsibilitiesLeadership & Strategy:Lead and manage a small cybersecurity team, including recruitment, mentoring, and performance...
-
Cybersecurity Manager
3 days ago
Glasgow, Glasgow City, United Kingdom Net Talent Full timeAbout the RoleNet Talent is partnering with a leading logistics company based in Glasgow to find their first IT Security Manager.This is a unique opportunity to join a dynamic team and take on a challenging role that requires a strong technical background and excellent leadership skills.Key ResponsibilitiesLeadership & Strategy:Lead and manage a small...
-
Cybersecurity Manager
3 days ago
Glasgow, Glasgow City, United Kingdom Net Talent Full timeAbout the RoleNet Talent is partnering with a leading logistics company based in Glasgow to find their first IT Security Manager.This is a unique opportunity to join a dynamic team and take on a challenging role that requires a strong technical background and excellent leadership skills.Key ResponsibilitiesLeadership & Strategy:Lead and manage a small...
-
Lead Cybersecurity Project Manager
3 weeks ago
Glasgow, Glasgow City, United Kingdom SSE Full timeAbout SSESSE is committed to becoming a prominent energy provider in a sustainable future. We are investing significantly in low carbon initiatives and are on a path to create a more inclusive and sustainable world for current and future generations.Role OverviewLocation: Flexible options availableCompensation: Competitive salary with additional benefits...
-
Cybersecurity Operations Manager
3 weeks ago
Glasgow, Glasgow City, United Kingdom Northern Marine Full timePosition Overview The Cybersecurity Operations Manager is a pivotal role that requires a comprehensive understanding of the technologies utilized by the Cybersecurity team. This position involves guiding, mentoring, and training team members while establishing processes, policies, and operational practices. The manager will ensure that organizational...
