IT & Information Security Manager- CISSP ISO27001 CISA CISM GDP

Michael Page International
10 Jan 2018
08 Feb 2018
Contract Type
Full Time
IT & Information Security Manager- CISSP ISO27001 CISA CISM GDPR DPA

You'll be responsible for the managing the development and on-going implementation of the organisations information/cyber security strategy and objectives, as well as implementing and improving procedures and processes to optimise information security effectiveness

Client Details
  • Leading UK organisation within its sector
  • Over 50 years of rich, ethical and community heritage, including helping to tackle child poverty, helping to support over 70 apprentices/year and dozens of community projects
  • Agile and swift at making decisions
  • Welcoming, engaging and empowering organisation, with a culture which embraces and helps colleagues to thrive and innovate in response to constant challenge and change
  • Committed to putting both internal and external customers first

  • An active role in managing and leading the end to end IT Security Service, providing 'hands on' assistance and guidance to the IT Security Analyst and colleagues where required
  • Act as technical advisor to business stakeholders, ensuring security requirements are considered in new projects and business change
  • Identifying relevant security industry practices and partnering across the organisation to implement improvement projects which mitigate risk and/or improve services
  • Assist Information Governance in defining the enterprise-wide data protection strategy
  • Management and development of the Information Security technical controls relating to ISO27001
  • Ensure Information Security best practices are embedded within the organisation
  • Ownership and day to day management responsibility for IT Security services and associated policies
  • Managing the development and on-going implementation of the organisations information/cyber security strategy

  • Significant experience managing enterprise grade IT Security infrastructure
  • Qualifications of interest: ITIL, SSCP, CISSP, ISO27001, CISM, CISA
  • Proven ability to discuss and explain technical concepts to business stakeholders and influence decision makers
  • Proven track record of implementing and improving information security practices and controls in areas including Data Protection, Identity and Access Management, Incident Response, Threat and Vulnerability Management and Secure SDLC
  • Broad technical knowledge of current and emerging cyber threats, as well as security technologies and methods used to protect both corporate and customer-facing network infrastructures.
  • Demonstrable technical knowledge and experience in the following areas: Firewall/VPN, Intrusion Protection Systems, Antivirus, Patching systems, Vulnerability Assessment, Web and email filtering, SSL Management, Encryption technologies and Cryptography, SIEM/Log Management, Web Application Firewall, Network Monitoring solutions, Malware detection systems

Job Offer
  • Generous salary
  • up to 15% Bonus
  • Excellent pension
  • Corporate training
  • Professional development
  • Private medical
  • Discounted dental insurance
  • 27 days holiday
  • Discounted gym membership

This job was originally posted as