IT Security Manager

Job Description

IT Security Manager - Fully RemoteInformation Technology Software Group£50,000 - £60,000Key ResponsibilitiesThis is a multi-faceted role, across a group of companies, where the post holder will be expected (but is not limited) to:

• To act as the Data Protection Officer (DPO) for the Software group of companies

• To ensure GDPR compliance is maintained from within each business unit.

• To develop and maintain the information security policies and accompanying standards, procedures and guidance
• To assist in obtaining/maintaining ISO 27001, CE and CE+ compliance
• To assist Business Units with any data or security breaches and reporting to appropriate governing bodies
• To audit compliance levels for the Business Units within the group and make appropriate recommendations.
• To develop and deliver a programme of planned compliance reviews and ensure any gaps are addressed
• To investigate suspected and actual security incidents in accordance with the security incident response procedures, produce reports with recommendations and ensure any remedial action is taken
• Ensure compliance is in line with Information Security standards, bringing a very strong compliance focus to the role
• Direct the preparation and implementation of policies, procedures and standards relating to information and telecommunication systems
• Use Jonas benchmarking data and knowledge of best practices to inform way ahead
• Working closely with the Vesta IT Leadership team to ensure compliance
• Maintain knowledge with emerging security trends, risks, new guidance or standards (internal and external) and security enhancing technologies
• To identify, deploy and report on security related information via the companies chosen product currently Knowbe4

• Involvement in a range of IT Projects from a security/compliance perspective.

• Additionally, involvement in other non IT compliance across the group will be required where necessary. Particularly in relation to our payment facilitation business where Financial Conduct Authority compliance, anti money laundering and Know Your Customercontrols and reviews are key.

Essential:

• Educated to degree level with an information security qualification such as CISSP, CISM or substantial work experience at a level demonstrating graduate ability and security knowledge
• Have proven experience as an Information Security officer or Information Security Manager
• Understanding of, and practical experience of applying the General Data Protection Regulation and other related legislation, standards and codes of practice
• A good working knowledge of information security including PCI DSS
• Good working knowledge of information risk analysis/management
• Experience in IT audit and IT risk management

• Working knowledge of ISO 27001
• Familiarity with common cyber security attack methods.

Desirable:

• Have the intellectual horsepower to develop innovated ideas and solutions and confidence to "Challenge the Norm"
• Logical and analytical, with a methodical approach to problem-solving.
• Experience of/or desire to learn other compliance requirements such as those defined by the FCA
• Experience of Knowb4 or equivalent

Robert Half Ltd acts as an employment business for temporary positions and an employment agency for permanent positions. Robert Half is committed to equal opportunity and diversity. Suitable candidates with equivalent qualifications and more or less experiencecan apply. Rates of pay and salary ranges are dependent upon your experience, qualifications and training. If you wish to apply, please read our Privacy Notice describing how we may process, disclose and store your personal data: legal-information/privacy-notice.