IT Security Risk & Compliance Manager

Harvey Nash Plc
11 Jan 2018
10 Feb 2018
Contract Type
Full Time

Information Risk & Compliance Manager

We are very pleased to be retained as a Recruitment Partner with our Client whom are looking to expand their Information Security team with the addition of an Information Risk & Compliance Manager to take ownership of this area within their Supply Chain Information Risk team.

You will take a combined role, which will include managing a small dedicated team within their supply chain security & risk management as well as acting as the Subject Matter expert in this area - where you will work very closely with other departments such as procurement and internal stakeholders across the business to minimise risk issues within the overall supply chain.

Responsibilities will include:- assessing legacy suppliers; deploying defined process & methodology with all new engagements; providing IS Security advise on related projects; managing & inestigating relevant supplier audits & reviews; undertaking application & cloud reviews; engaging & communicating regularly with stakeholders; line management of small team; look at technology platform to utilise best practice on supplier management; look at possible improvements/future strategies for minimising information security risk.

Please note that the ideal location for this role is Birmingham although applicants based in Leeds will also be welcomed under the proviso that there will be some need to visit the Birmingham office.

Essential Skills required:

  • Strong working knowledge of ISO27001/2

  • Relevant Security qualification such as CISA or CISSP or CISM or PCI ISA or ISO27001

  • Technical/IT Audit background

  • Risk Management

  • Good Communications skills - written & verbal

For more information about the vacancy, company etc - please send a CV with a convenient time to call you. All applications are treated with the strictest confidence

This job was originally posted as