Cybersecurity Risk Manager
3 weeks ago
Cybersecurity Risk Manager
Salary: Competitive
Location: Glasgow Head Office
Shift Pattern: Days
Hours per day: Full-time
This is a permanent position.
POSITION OVERVIEW:
In this pivotal role, you will be part of the second line of defense, where you will guide and assist the organization in effectively managing cyber threats and safeguarding information assets. Your primary responsibility will be to shield the organization from security vulnerabilities by identifying potential risks and formulating suitable risk mitigation strategies. You will provide senior management with independent verification of their cyber risk management and information security posture.
Collaboration with the first line cyber team will be essential to ensure that business assurance plans are effectively communicated and that the requirements of the second line are well understood.
Additionally, you will spearhead a series of defined cyber assurance evaluations, projects, and initiatives, while striving to meet cyber assurance and compliance objectives. You will play a key role in shaping the organization's cybersecurity strategy concerning data protection, monitoring and reporting, risk assessment, incident response, business continuity, and disaster recovery.
PRINCIPAL TASKS AND RESPONSIBILITIES
Monitor & Review
- Contribute to and uphold the existing information security risk management framework, articulating risks in business terms, identifying suitable mitigation strategies, and driving their implementation to ensure the security of our information and services.
- Engage with key stakeholders to prioritize technology, process, and personnel-based security initiatives to address identified risks, employing continuous improvement principles to enhance our information security delivery framework.
- Participate in the annual information security business plan, including audits, assessments, and updates to the information security delivery framework, such as policy revisions.
- Identify relevant information security activities in response to evolving standards and regulations.
- Collaborate with key stakeholders to prioritize information security and compliance initiatives.
- Conduct security risk assessments and adversarial testing to determine proportional risks, advising on relevant enhancements to the information security delivery framework.
- Ensure that data security measures are in place to comply with our policies.
Respond & Remediate
- Address information security incidents in accordance with established standards and processes, meeting or exceeding agreed performance indicators.
- Follow a regular schedule of security and data protection compliance audits and assessments, taking necessary actions to mitigate any identified risks.
- Assist in the development of the organization's disaster recovery and business continuity plans.
- Collaborate with internal departments and external partners to identify and mitigate information security-related risks.
- Initiate and promote activities to enhance information security and data protection awareness throughout the organization and its partners.
- Serve as the primary contact for supervisory authorities and individuals whose data is processed.
- Perform various activities related to information security and compliance, including awareness training, data migrations, security enhancements, and data protection inquiries.
- Provide support in business development proposals and responses.
- Undertake other duties as deemed appropriate for the role and skill set.
Team Management
- Contribute to and fulfill the development hiring plan for the team, including sourcing, screening, and interviewing candidates.
- Conduct regular one-on-one meetings with all direct reports.
- Establish team goals and technical direction, ensuring alignment with the objectives of the Technology and Information Security roadmaps.
- Set personal goals for each team member, ensuring alignment with team objectives.
- Implement effective engineering processes and policies that emphasize quality and progress.
- Act as a deputy for the Head of Information Security when required.
KNOWLEDGE, SKILLS & ABILITIES
Essential
- Degree-level qualification or equivalent experience in cyber risk management and information protection.
- Knowledge of cybersecurity fundamentals.
- Familiarity with ISO 27001.
- Understanding of NIST Cybersecurity Framework.
- Strong technical background in data classification and data loss prevention.
- Experience in information security governance, policy, and procedure development.
- Proficiency in Active Directory, Azure AD, Windows File Services, SharePoint, and Office 365.
- Experience with Microsoft Purview implementation and configuration oversight.
- Broad technical knowledge (database, web application development, infrastructure, etc.).
- Strong analytical and decision-making skills based on risk assessment.
- Business acumen.
- Effective communication skills across all organizational levels.
- Pragmatic and adaptable approach.
- Problem-solving capabilities.
- Excellent interpersonal skills.
- Creativity.
Desirable
- Certifications such as CISSP, CRISC, or CISM.
- Knowledge of EU GDPR.
- Familiarity with PCI-DSS.
- Experience with cloud, hybrid, and global enterprise networks.
- Understanding of audit and risk assessment processes.
- Experience in conducting audits, developing controls, and risk assessments.
- Experience in managing third-party relationships.
- Ability to analyze complex business processes and technologies to provide sound recommendations to non-technical stakeholders.
The Company
City Refrigeration Holdings was founded in 1985 by Willie and Susan Haughey, with the aim of transforming the facilities management industry. The Haugheys built their enterprise on the principles of collaboration and transparency, fostering long-term, mutually beneficial partnerships with clients. Each partnership is tailored to the unique needs of the business, implemented through a bespoke, self-delivered model.
This focus has enabled City Group to evolve from its modest beginnings into one of the most trusted facilities management companies globally. The organization now employs over 12,000 individuals and has established divisions across Europe, Australia, North America, and Asia. It has also diversified its service offerings to include maintenance and engineering, technical procurement and support, cleaning, and ancillary services across various markets.
Over three decades into its journey, City remains committed to the core values established by Lord and Lady Haughey, passionately delivering unparalleled professionalism, quality, customer service, and value to partners worldwide.
-
Cybersecurity Risk Manager
3 weeks ago
Glasgow, Glasgow City, United Kingdom Be-IT Full timeCyber Risk Management DirectorGlasgow HybridAre you an experienced professional in the realm of cyber risk and information security? Do you excel in a fast-paced setting, guiding teams to protect organizational operations from emerging security challenges? If this resonates with you, we have an exciting opportunity.Role Overview:Our client is in search of a...
-
Cybersecurity Risk Manager
3 weeks ago
Glasgow, Glasgow City, United Kingdom Be-IT Full timeCyber Risk Management SpecialistGlasgow HybridAre you an experienced professional in the realm of cyber risk and information safeguarding? Do you excel in a fast-paced environment, steering teams to protect organizational operations from emerging security challenges? If this resonates with you, we have an exciting opportunity.Position Overview:Be-IT is in...
-
Cybersecurity Risk Manager
6 days ago
Glasgow, Glasgow City, United Kingdom Be-IT Full timeAbout the RoleWe are seeking a seasoned expert in cyber risk management and information protection to join our team as an Information Security Manager. This pivotal role will involve leading efforts to manage cyber risks, ensuring the business is protected from security threats.Key Responsibilities:Risk Management: Develop and maintain our information...
-
Cybersecurity Risk Manager
3 weeks ago
Glasgow, Glasgow City, United Kingdom Be-IT Full timeCyber Risk and Security Operations ManagerRemote or Hybrid Work OptionsAre you an experienced professional in the realm of cyber risk management and data security? Do you excel in fast-paced environments, guiding teams to protect organizational operations from emerging security challenges? If this resonates with you, we have an exciting opportunity.Role...
-
Cybersecurity Risk Manager
6 days ago
Glasgow, Glasgow City, United Kingdom Be-IT Full timeAbout the Role: We are seeking a seasoned expert in cyber risk management and information protection to join our 2nd Line of defence team at Be-IT. In this pivotal role, you will lead efforts to manage cyber risks, ensuring the business is protected from security threats. Your expertise will guide the identification of risks and the development of effective...
-
Cybersecurity Risk Management Lead
5 days ago
Glasgow, Glasgow City, United Kingdom Be-IT Full timeAbout the RoleWe are seeking a seasoned expert in cyber risk management and information protection to join our team as an Information Security Manager. As a key member of our 2nd Line of Defence, you will lead efforts to manage cyber risks and ensure the business is protected from security threats.Key ResponsibilitiesLead the development and implementation...
-
Cybersecurity Risk Manager
4 days ago
Glasgow, Glasgow City, United Kingdom City Facilities Management Holdings Ltd Full timeCybersecurity Risk Manager Salary: Competitive Location: Glasgow Head Office Shift Pattern: Days Hours per day: Full-time This is a permanent position. POSITION OVERVIEW: This role is situated within the second line of defense, where you will oversee and assist the organization in effectively managing cyber threats and safeguarding...
-
Cybersecurity Risk Manager
3 weeks ago
Glasgow, Glasgow City, United Kingdom City Facilities Management Holdings Ltd Full timeCybersecurity Risk Manager Salary: Competitive Location: Glasgow Head Office Shift Pattern: Days Hours per day: Full-time This is a permanent position. POSITION OVERVIEW: This role is situated within the second line of defense, where you will oversee and assist the organization in effectively managing cyber threats and safeguarding...
-
Cybersecurity Risk Manager
3 days ago
Glasgow, Glasgow City, United Kingdom City Facilities Management Holdings Ltd Full timeCybersecurity Risk Manager Salary Competitive Location: Glasgow Head Office Shift Pattern: Days Hours per day: Full-time Position Overview: This role is situated within the second line of defense, where you will lead and support the organization in effectively managing cyber risks and safeguarding information. Your primary responsibility will...
-
Cybersecurity Risk Manager
3 weeks ago
Glasgow, Glasgow City, United Kingdom City Facilities Management Holdings Ltd Full timeCybersecurity Risk Manager Salary Competitive Location: Glasgow Head Office Shift Pattern: Days Hours per day: Full-time Position Overview: This role is situated within the second line of defense, where you will lead and support the organization in effectively managing cyber risks and safeguarding information. Your primary responsibility will...
-
Cybersecurity Risk Manager
3 days ago
Glasgow, Glasgow City, United Kingdom City Facilities Management Holdings Ltd Full timeCybersecurity Risk Manager Salary: Competitive Location: Glasgow Head Office Shift Pattern: Days Hours per day: Full-time This is a permanent position. POSITION OVERVIEW: In this pivotal role, you will be an integral part of the second line of defense, guiding and assisting the organization in effectively managing cyber risks and...
-
Cybersecurity Risk Manager
3 weeks ago
Glasgow, Glasgow City, United Kingdom City Facilities Management Holdings Ltd Full timeCybersecurity Risk Manager Salary: Competitive Location: Glasgow Head Office Shift Pattern: Days Hours per day: Full-time This is a permanent position. POSITION OVERVIEW: In this pivotal role, you will be an integral part of the second line of defense, guiding and assisting the organization in effectively managing cyber risks and...
-
Cybersecurity Risk Manager
4 days ago
Glasgow, Glasgow City, United Kingdom City Facilities Management Holdings Ltd Full timeCybersecurity Risk Manager Salary: Competitive Location: Glasgow Head Office Shift Pattern: Days Hours per day: Full-time This is a permanent position. POSITION OVERVIEW: In this pivotal role, you will be part of the second line of defense, guiding and supporting the organization in effectively managing cyber risks and safeguarding...
-
Cybersecurity Risk Manager
3 weeks ago
Glasgow, Glasgow City, United Kingdom City Facilities Management Holdings Ltd Full timeCybersecurity Risk Manager Salary: Competitive Location: Glasgow Head Office Shift Pattern: Days Hours per day: Full-time This is a permanent position. POSITION OVERVIEW: In this pivotal role, you will be part of the second line of defense, guiding and supporting the organization in effectively managing cyber risks and safeguarding...
-
Cybersecurity Manager
6 days ago
Glasgow, Glasgow City, United Kingdom Net Talent Full timeAbout the RoleNet Talent is partnering with a leading logistics company to find their first IT Security Manager.This is a unique opportunity to join a dynamic team and shape the company's IT security posture.Key ResponsibilitiesLeadership & Strategy:Lead and manage a small cybersecurity team, including recruitment, mentoring, and performance...
-
Cybersecurity Manager
3 days ago
Glasgow, Glasgow City, United Kingdom Net Talent Full timeAbout the RoleNet Talent is partnering with a leading logistics company to find their first IT Security Manager.This is a unique opportunity to join a dynamic team and shape the company's IT security posture.Key ResponsibilitiesLeadership & Strategy:Lead and manage a small cybersecurity team, including recruitment, mentoring, and performance...
-
Cybersecurity Manager
3 days ago
Glasgow, Glasgow City, United Kingdom Net Talent Full timeAbout the RoleNet Talent is partnering with a leading logistics company based in Glasgow to find their first IT Security Manager.This is a unique opportunity to join a dynamic team and take on a challenging role that requires a strong technical background and excellent leadership skills.Key ResponsibilitiesLeadership & Strategy:Lead and manage a small...
-
Cybersecurity Manager
3 days ago
Glasgow, Glasgow City, United Kingdom Net Talent Full timeAbout the RoleNet Talent is partnering with a leading logistics company based in Glasgow to find their first IT Security Manager.This is a unique opportunity to join a dynamic team and take on a challenging role that requires a strong technical background and excellent leadership skills.Key ResponsibilitiesLeadership & Strategy:Lead and manage a small...
-
Lead Cybersecurity Project Manager
3 weeks ago
Glasgow, Glasgow City, United Kingdom SSE Full timeAbout SSESSE is committed to becoming a prominent energy provider in a sustainable future. We are investing significantly in low carbon initiatives and are on a path to create a more inclusive and sustainable world for current and future generations.Role OverviewLocation: Flexible options availableCompensation: Competitive salary with additional benefits...
-
Cybersecurity Operations Manager
3 weeks ago
Glasgow, Glasgow City, United Kingdom Northern Marine Full timePosition Overview The Cybersecurity Operations Manager is a pivotal role that requires a comprehensive understanding of the technologies utilized by the Cybersecurity team. This position involves guiding, mentoring, and training team members while establishing processes, policies, and operational practices. The manager will ensure that organizational...
