IT Security and Continuity Manager - London

Harvey Nash Plc
London (Greater)
£80000 - £90000 per annum
13 Nov 2017
16 Nov 2017
Contract Type
Full Time
Motability Operations company is looking for passionate experienced IT Security and Continuity Manager!

This is a permanent job based in London.

Key Accountabilities

  • ? Provide management oversight of ad-hoc security reviews, re-certification reviews and tracking of remediation activity and advise on process improvements
  • ? Manage the implementation of initiatives aligned to the defined Strategic Security Roadmap
  • ? Facilitate appropriate activities to support and improve ongoing awareness of IT Security & Continuity best practices
  • ? Develop and implement comprehensive enterprise IT Security and Continuity strategies
  • ? Responsible for IT Security & Continuity programme governance and overseeing portfolio delivery of security and continuity projects
  • ? Provide management oversight on the performance of internal and external network and systems vulnerability assessments and penetration tests
  • ? Lead security assurance and testing activity with contracted third party vendor, verifying findings, recommending mitigating activities and tracking activities to completion
  • ? Provide management oversight of security testing output to assist in prioritisation of remediation activity
  • ? Security incident / problem management and associated reporting
  • ? Development of a Cyber Security Incident Response Team (CSIRT) and associated tools and technologies to support strategic aims of the business
  • ? Provision of specialist advice and guidance aimed at the identification, mitigation and management of IT Security related risks
  • ? Provide timely security advice to projects based on assessment of security risks and threats to inform business decisions
  • ? Liaise with outsourced service providers and third parties to ensure IT Security requirements are met
  • ? Maintaining a watching brief on industry trends and / or specific vulnerabilities / external threats that surface globally that may impact our risk based assessments
  • ? Management of the IT Service Continuity (DR & BCP) recovery process
  • ? Oversee the Business Impact Assessment (BIA) process on behalf of the IT business division to identify critical IT services and map business processes to IT services and dependencies

Experience and Qualifications

  • ? Proven track record of senior leadership and demonstrable experience of managing IT Security projects, IT Security controls / compliance and defining / delivering IT Security strategies
  • ? Demonstrable senior experience in a role of similar scale
  • ? Experience working in collaboration with third party vendors, external service providers and hosting partners
  • ? Experience in managing workstreams and leading a transformation programme of continual improvement
  • ? Exceptional communication, stakeholder engagement and relationship management skills
  • ? Strong project management and analytical abilities
  • ? Experience of managing and responding to cyber security incidents and security incident management frameworks, processes and associated response measures
  • ? Exposure working with senior board members and executives, understanding and addressing concerns and requirements
  • ? Proven knowledge and operational experience of market leading security products / technologies including intrusion detection / prevention, DLP, SIEM, vulnerability management, DDoS, data encryption / data handling, endpoint protection and mobile device / enterprise mobility management
  • ? Understanding and knowledge of infrastructure and technologies including networks, servers (physical / virtual), voice, databases, storage (NAS / SAN), shared services, architecture services, distributed environments, web, e-mail, desktops, cloud security, DevOps
  • ? Ability to lead, define and implement best practices, processes and procedures
  • ? Working knowledge and detailed understanding of relevant compliance, control frameworks and information security standards such as ISO 27001, ISO 27002, PCI-DSS and NIST

Interested? We are waiting for your applicaton!

If you have any questions pelase contact
This job was originally posted as