Cyber Security Manager

We're looking for a Cyber Security Manager to join our existing team in driving forward our cyber security programme. You will need to be adaptable and dynamic, with a range of experience across all areas of cyber security.

You will lead the cyber security strategy and delivery across the global business. Your passion, resilience, and enthusiasm for leading a growing cyber security function within a modern digital platform will be a key element to influencing priorities withinthe business to drive our security posture forward.

Based at our Manchester Head Office, this global role is to manage cyber risk across the company. This will need someone willing to be hands-on and using tools to monitor and investigate activity, as well as support the design and implementation of our cybersecurity strategy.

Working collaboratively with key stakeholders, this Cyber Security Manager role is critical to ensuring that the confidentiality, integrity and availability of key information assets are maintained and support the continued growth of the company.

You will be someone with 2-3 years' experience in an information/cyber security role. Ideally you will have experience in both information security and cyber security and will be comfortable working on projects ranging from supplier risk assessments to designingauthentication processes in apps, and everything in between.

Responsibilities of a Cyber Security Manager:

- Maintenance and continued improvement of our Cyber Security Posture including our cyber landscape mapping, alignment to cyber security frameworks and automating our protect, detect and response in real-time tools and techniques
- Building, developing and evolving our Cyber Security Toolkit including policy, risk management, insights and operations to drive an effective, pragmatic and outcome-driven capability to mature our cyber security posture
- Assessing and managing cyber security risks to the business
- Owning, maintaining and risk-assessing our digital footprint from a cyber security perspective
- Developing and operating the vulnerability management and attack surface management processes
- Using modern cyber security tooling to identify, classify, investigate and resolve information and cyber security incidents across the global business
- Driving a positive influence and culture adoption within the other Travel Counsellors teams
- Leading the response to cyber security incidents
- With a wide range of stakeholders, you will continue to develop and manage the information security awareness programme across the global business
- Managing technical audits, including scoping penetration tests and manging findings through to resolution
- Managing supply chain cyber security
- Monitoring the external threat landscape to ensure that the company is able to make risk-based decisions on relevant information
- Supporting growth within the business, you will work with other areas of the business and franchisees to respond to client requests for information security assurances
- Support the management and operation of the information security management system, including creating and maintaining security policies, standards, processes and procedures

**Essential Skills**:

- Experience of using modern cyber security tooling such as such as Vulnerability Management, SIEM, IPS, IDS and MDR
- Experience of working in both hybrid on-premise and cloud solutions
- Experience of managing a digital platform at scale across on-premise data centers, Azure, O365 and AWS
- Experience of both on-premise and azure active directory, including modern authentication techniques
- Experience in managing and influencing multiple stakeholders globally, and comfortable working across all levels of the company
- Experience of driving innovation and continuous improvement in information and cyber security
- Well-developed technical understanding of IT systems, including practical experience using security tools
- Experience of developing and managing policies, standards, processes and procedures
- Familiarity with common information security management standards, such as the ISO 27000 group of standards, Cyber Essentials, NIST and CIS
- Knowledge of threats and good practices in secure software development
- Experience leading and investigating security incidents
- Experience and knowledge of data protection legislation and the practical implementation of regulations

**About Company** At Travel Counsellors, we care about our customers, communities, and our colleagues more than anyone else and that's what makes us special. For us, relationships trump transactions, and we are there for our customers, connecting with them on a deeply humanlevel through the moments that matter.

We've been changing lives for over 28 years as the leading travel marketplace for self-employed travel entrepreneurs, empowering over 2,000 global independent travel agents to run successful leisure and corporate travel businesses.

Our Travel Counsellors are supported by a team of over 270 super talented people in our Support Offices to help them create unique, inspiring, and exciting experiences for their customers, building lasting personal relationships that brings them back tous, time and time again.

We're fired up for the future as the demand for travel after COVID-19 returns even greater than before, and we're looking for the brightest and the best to come and join us to take our business to the next level.