Role: Information Security Manager
Salary: £52,000 - £60,000 + Benefits
·Reporting directly to the director of IT, you will act as a lead on all information security issues to Management to ensure that Information security risks are identified understood and addressed.
·Development and communication of Information Security Reports to risk committee and clients.
·Providing guidance to Information Security related audits and reviews and action resolution (internal, external and client driven) to ensure that the business understand issues and remediation effectively mitigates information security risks.
·Development and implementation of Assurance Review framework
·Management of internal Information Security Incidents
·Develop and manage a Security incident management measurement program and manage the risk management tools and techniques.
·Identify network vulnerabilities and explore network security controls.
·Representing information security at relevant risk committees including with Board members.
·Identify the criteria for access control, understand the different factors that help in implementation of access controls and design an access control plan (if required) and ensure system users are aware of their IA responsibilities before granting access to the information systems.
·Proven track record managing information security operations for an organisation and good understanding in information security risk management.
·Experience of maintaining information security system to achieve and maintain ISO 27001 security standard.
·The ability to identify standards, procedures, directives, policies, regulations and laws for physical security and implement the required controls.
·Experience in establishing and implementing Information Security Risk management process and ensure risks are identified and managed.
·You will ensure software assurance programs in alignment with the secure coding principles and each phase of System Development Life Cycle (SDLC).
·Good leadership and management experience.
·CISM/CISSP or equivalent qualification.
·Technical knowledge on Information Security technologies and products.
·Able to achieve SC Clearance.
·Desirable skills include an understanding of; PCI DSS, ITIL and Application Security review.
For further details please get in contact ASAP.