IT Security & Risk Manager

via resource
London, South East England
10 Jul 2017
08 Aug 2017
Contract Type
Full Time

Our client, a leading Management Consultancy, require an IT Security & Risk Manager to ensure that the operational security & risk profile of the organisation within ITS governance, infrastructure, applications and business processes are defined and continuously improved. This includes proactive evaluation of the current state of ITS security & risk management processes, tools and activities, and providing recommendations for enhancement where appropriate.

Key Responsibilities for the IT Security & Risk Manager

  • Provide oversight, coordination and management of Security & Risk projects
  • review Client contracts and provide feedback to legal on what clauses the business can accept and what needs to be changed
  • fill RFI/RFP’s
  • review and provide guidance on complex RFI/RFP from the CISO and other Senior Stakehodlers
  • identify areas of inefficiency to improve the current client response processes
  • regularly meet with Client teams to give them assurance about our security and how we protect their data
  • manage client audits on security controls
  • defend our security choices (why we provide admin access on laptops or allow Gmail/Dropbox) and figure out ways to meet their needs
  • advise internal teams on what additional security technology needs to be implemented to meet client needs
  • manage security projects to meet
  • track client and internal audit remediation activities
  • manage team members

Mandatory Skills & Experience of the IT Security & Risk Manager

  • Minimum of 5 years of experience in Information Security with proven experience managing and implementing information security solutions
  • Need experienced constructing RFI/RFP responses
  • Strong understanding of the business relevance of information risks and the current trends and developments in information security
  • Possesses a comprehensive understanding of how risk management processes and other IT functions collectively integrate to contribute towards achieving business objectives
  • Project management experience with a proven track record for managing security projects Ability to take a holistic view of security issues and make risk judgements across the relevant scope
  • Ideally CISSP, CISM or similar certifications

If you would like to find out more please get in touch with Sam Finn.