Information Security Manager
19 hours ago
POSITION OVERVIEW:
This role sits within the 2nd Line of defence, where you will lead and support the business, managing cyber risk and information protection positions effectively. Protecting the business from security threats, by identifying risks and developing appropriate risk migration plans. Providing senior leadership with independent assurance of their cyber risk and information protection posture.
The role will work collaboratively with 1st Line cyber team to ensure business assurance plans are shared and the requirements of 2nd Line are understood.
You will also take the lead in delivering a defined list of cyber assurance reviews, projects, and initiatives as well as achieving the cyber assurance and compliance related objectives. You will also help shape the City cyber security strategy for data security, monitoring and reporting, risk and threat assessment, incident response, business continuity and disaster recovery.
PRINCIPAL TASKS AND RESPONSIBILITIES
Monitor & Review
Contribute and maintain the current information security risk management framework, articulate risk in business terms, identify appropriate mitigation measures and drive their delivery to ensure the security of our information and services
Liaise with key stakeholders to prioritise technology, process and people-based security initiatives to mitigate risks identified and use continuous improvement principles to ensure the evolution of our information security delivery framework.
Contribute to the annual information security business plan including audits, tests, risk assessment activities and additions to the information security delivery framework, e.g. policy updates.
Identify relevant information security activities in response to changes in standards and regulations.
Liaise with key stakeholders to prioritise information security and compliance initiatives.
Perform security risk assessments and adversarial testing to establish proportionate risk advising of any relevant enhancements to the information security delivery framework.
Accountable for data security measures being in place to meet our policies.
Respond & Remediate
Responding to information security incidents in line with the appropriate standards and processes, meeting or exceeding agreed KPIs.
Following a regular timetable of security and data protection compliance audits and tests, taking appropriate steps to mitigate any risks discovered.
Assist with the development of City’s disaster recovery and business continuity plan.
Liaise with internal departments and external suppliers to identify and address Information Security related risks.
Initiate, facilitate and promote activities to foster information security and data protection awareness throughout City and its suppliers.
To advise on, and to maintain, data protection impact assessments
To be the first point of contact for supervisory authorities and for individuals whose data is processed (colleagues, customers etc).
To perform any activities relating to information security and compliance such as awareness-raising, training needs analysis, data migrations, security hardening, breach management and data protection based RFI.
Provide assistance in business development bids, PQQs and ITT responses.
Other duties deemed appropriate for the role and skillset.
Team Management
Input to and fulfil the development hiring plan for the team, including sourcing, screening, and interviewing
Hold regular 1-1s with all direct reports
Set team goals and technical direction while ensuring that they align with the goals of the Technology and Information Security roadmaps
Set personal goals for each team member as well as direction while ensuring they are aligned with team goals
Implement effective engineering processes and policies that emphasize quality and forward progress
Deputise for the Head of Information Security
KNOWLEDGE, SKILLS & ABILITIES
Essential
* Degree level qualification or equivalent experience in Cyber risk management and information protection
* Cyber security essentials
* ISO 27001
* NIST CSF
* Strong Technical Background in Data Classification and Data Loss Prevention
* Experience in information security governance, policy and procedure definition
* Administration of Active Directory, Azure AD, Windows File Services, SharePoint &
* Office 365
* Implementation of Microsoft Purview and oversight of configuration.
* Strong broad-based technical background (database, web-based application development, infrastructure etc.)
* Strong risk-based analysis and decision making skills
* Business sense
* Communicate Up, Down, and Across All Levels of an Organisation
* Pragmatic and flexible approach
* Problem-Solver
* Excellent interpersonal skills
* Creativity
Desirable
* CISSP, CRISC or CISM certified
* EU GDPR
* PCI-DSS
* Cloud, Hybrid & Global Enterprise networks
* Audit and risk assessment processes
* Conducting audits, developing controls & risk assessments
* Managing 3rd parties
* Demonstrated ability to understand and analyse complex business processes and technologies to make sound recommendations to non-technical constituents
-
Senior Information and Cyber Security Officer
3 months ago
Glasgow, United Kingdom Social Security Scotland Full time**Details**: **Reference number**: - 305501**Salary**: - £41,642 - £49,860**Job grade**: - Senior Executive Officer- B3**Contract type**: - Permanent**Business area**: - SSS - Chief Digital Office**Type of role**: - Other**Working pattern**: - Flexible working, Full-time, Part-time**Number of jobs available**: - 1Contents Location About the...
-
Senior Information and Cyber Security Officer
4 months ago
Glasgow, United Kingdom Social Security Scotland Full time**Details**: **Reference number**: - 347044**Salary**: - £44,557 - £53,351**Job grade**: - Senior Executive Officer- B3**Contract type**: - Permanent**Business area**: - SSS - Chief Digital Office**Type of role**: - Other**Working pattern**: - Full-time**Number of jobs available**: - 2Contents Location About the job **Benefits**: Things you need...
-
Senior Information and Cyber Security Officer
2 months ago
Glasgow, United Kingdom Social Security Scotland Full timeJob summaryThis role in Digital Risk and Security is pivotal in advancing an ambitious Security Assurance programme. Collaborating with the Head of Security Assurance, the Security Risk and Assurance Manager, Security Architects, and colleagues in the Chief Digital Office, you will help ensure the confidentiality, integrity, and availability of corporate...
-
Information Security Manager
4 hours ago
Glasgow, United Kingdom City Facilities Management Full timePOSITION OVERVIEW:This role sits within the 2nd Line of defence, where you will lead and support the business, managing cyber risk and information protection positions effectively. Protecting the business from security threats, by identifying risks and developing appropriate risk migration plans. Providing senior leadership with independent assurance of...
-
Information Security Manager
20 hours ago
Glasgow, United Kingdom CV-Library Full timeInformation Security Manager Glasgow 2 Days a week Offering up to £75,000 with a 10% Bonus Are you a seasoned expert in cyber risk management and information protection? Do you thrive in a dynamic environment, leading teams to safeguard business operations from evolving security threats? If so, we have the perfect opportunity for you! About...
-
Information Security Manager
2 months ago
Glasgow, United Kingdom City Facilities Management Holdings Ltd Full timeInformation Security Manager Salary Competitive Location Glasgow Head Office Shift Pattern Days Hours per day This is a Permanent, vacancy that will close in 15 days at 23:59 BST. The Vacancy POSITION OVERVIEW: This role sits within the 2nd Line of defence, where you will lead and support the business, managing cyber risk and information...
-
Information Security Manager
3 weeks ago
Glasgow, United Kingdom Be-IT Resourcing Ltd Full timeInformation Security Manager Glasgow Hybrid Are you a seasoned expert in cyber risk management and information protection? Do you thrive in a dynamic environment, leading teams to safeguard business operations from evolving security threats? If so, we have the perfect opportunity for you!About the Role:Our client is seeking an Information Security Manager...
-
Information Security Manager
1 week ago
Glasgow, United Kingdom Be-IT Resourcing Ltd Full timeInformation Security Manager Glasgow 2 Days a weekOffering up to £75,000 with a 10% BonusAre you a seasoned expert in cyber risk management and information protection? Do you thrive in a dynamic environment, leading teams to safeguard business operations from evolving security threats? If so, we have the perfect opportunity for you!About the Role:Our...
-
Information Security Manager
1 week ago
Glasgow, United Kingdom Hays Technology Full timeAbout the RoleWe are seeking an experienced Information Security Manager to join our team at Hays Technology. As a key member of our organization, you will be responsible for leading our GRC and information security assurance initiatives.Key ResponsibilitiesLead business-wide GRC and information security assurance initiativesContribute to a future-focused...
-
Information Security Manager
1 week ago
Glasgow, United Kingdom Hays Technology Full timeAbout the RoleWe are seeking an experienced Information Security Manager to join our team at Hays Technology. As a key member of our organization, you will be responsible for leading our GRC and information security assurance initiatives.Key ResponsibilitiesLead business-wide GRC and information security assurance initiativesContribute to a future-focused...
-
Information Security Manager
20 hours ago
Glasgow, United Kingdom City Facilities Management Full timeJob Title: Information Security ManagerCity Facilities Management is seeking an experienced Information Security Manager to join our team. As a key member of our organization, you will be responsible for leading and supporting the business in managing cyber risk and information protection.Key Responsibilities:Lead and support the business in managing cyber...
-
Information Security Manager
3 weeks ago
Glasgow, United Kingdom Be-IT Full timeInformation Security ManagerThe following information aims to provide potential candidates with a better understanding of the requirements for this role.Glasgow HybridAre you a seasoned expert in cyber risk management and information protection? Do you thrive in a dynamic environment, leading teams to safeguard business operations from evolving security...
-
Information Security Manager
1 week ago
Glasgow, United Kingdom Be-IT Resourcing Full timeInformation Security Manager Glasgow 2 Days a week Offering up to £75,000 with a 10% Bonus Are you a seasoned expert in cyber risk management and information protection? Do you thrive in a dynamic environment, leading teams to safeguard business operations from evolving security threats? If so, we have the perfect opportunity for you! About the...
-
Information Security Manager
1 week ago
Glasgow, United Kingdom Be-IT Resourcing Full timeInformation Security Manager Glasgow 2 Days a week Offering up to £75,000 with a 10% Bonus Are you a seasoned expert in cyber risk management and information protection? Do you thrive in a dynamic environment, leading teams to safeguard business operations from evolving security threats? If so, we have the perfect opportunity for you! About the Role: Our...
-
Information Security Manager
6 days ago
glasgow, United Kingdom Be-IT Full timeInformation Security Manager Glasgow Hybrid Are you a seasoned expert in cyber risk management and information protection? Do you thrive in a dynamic environment, leading teams to safeguard business operations from evolving security threats? If so, we have the perfect opportunity for you! About the Role: Our client is seeking an Information Security...
-
Information Security Manager
2 months ago
Glasgow, United Kingdom Be-IT Full timeInformation Security Manager Glasgow Hybrid Are you a seasoned expert in cyber risk management and information protection? Do you thrive in a dynamic environment, leading teams to safeguard business operations from evolving security threats? If so, we have the perfect opportunity for you!About the Role: Our client is seeking an Information Security Manager...
-
Information Security Manager
1 month ago
Glasgow, United Kingdom Be-IT Full timeInformation Security Manager Glasgow Hybrid Are you a seasoned expert in cyber risk management and information protection? Do you thrive in a dynamic environment, leading teams to safeguard business operations from evolving security threats? If so, we have the perfect opportunity for you!About the Role: Our client is seeking an Information Security Manager...
-
Information Security Manager
5 days ago
glasgow, United Kingdom Be-IT Full timeJob DescriptionInformation Security ManagerGlasgow HybridAre you a seasoned expert in cyber risk management and information protection? Do you thrive in a dynamic environment, leading teams to safeguard business operations from evolving security threats? If so, we have the perfect opportunity for you!About the Role:Our client is seeking an Information...
-
Information Security Manager
1 month ago
Glasgow, United Kingdom Be-IT Full timeInformation Security Manager Glasgow Hybrid Are you a seasoned expert in cyber risk management and information protection? Do you thrive in a dynamic environment, leading teams to safeguard business operations from evolving security threats? If so, we have the perfect opportunity for you! About the Role: Our client is seeking an Information...
-
Information Security Manager
12 hours ago
Glasgow, United Kingdom Be-IT Full timeInformation Security Manager Glasgow HybridA variety of soft skills and experience may be required for the following role Please ensure you check the overview below carefully.Are you a seasoned expert in cyber risk management and information protection? Do you thrive in a dynamic environment, leading teams to safeguard business operations from evolving...