Information Security Manager

Prepaid Financial Services
London (Greater)
01 Feb 2018
21 Feb 2018
Contract Type
Full Time
Information Security Manager
Location: London

Pre-Paid Financial Services is the market leader in managing pre-paid instruments for payments and acquiring card based transactions through a sister company eCOMM Merchant Solutions.

The Information Security Manager joins a highly-visible and growing team that is at the leading edge of the enterprise-level cultural change that we need, in order to meet our strategic goals, including: world-class customer service, lock-step business alignment, satisfying rigorous audits, attaining external certifications (e.g., ISO27001, PCI DSS, GDPR, PSD2), and more.

The Information Security Manager will report to the Operations Director with a dotted line into the CEO. The Information Security Manager will set the strategic direction and manage all aspects of our IS program. The Information Security Manager key responsibilities include:
• Own existing and implement new IS policies and procedures aligned with organizational risks and business strategy to drive continual improvement of the IS program
• Document IS policies and perform regular reviews of existing documents
• Provide direct training and oversight to our client’s, employees and third parties on IS policies and procedures; initiate, facilitate, and promote activities to improve awareness
• Have input into the risk register: manage identification, assessment, and treatment of risks
• Manage Business Continuity/Disaster Recovery plans, including regular testing
• Work closely with developers and architects to ensure that security requirements are defined and delivered through the Software Development Life Cycle (SDLC)
• Coordinate response to assessments (e.g., by clients and external certifying bodies), including ISO27001 / PCI DSS certification
• Evaluate third-party tools and services; manage or have participation of projects to deliver new solutions
• Provide leadership and guidance as the subject matter expert on the processes, best practices, and functions of information security disciplines, technologies, and guidelines
• Strong proven experience in Information Security, including defining organizational IS strategy
• High level of experience with ISO27k and PCI DSS standard/framework
• Managed internal/framework audit programs
• Manage vulnerability scans and Penetration test mitigation
• Review and manage network reviews including firewall rule reviews
• Respond to log server alerts of a IT security nature
• Knowledge in application security/secure SDLC/DevSecOps
• Expertise in security awareness program
• Thought leadership in IS best practices
• Authored policies, standards, and processes

ISO 27001 - Lead Auditor - CISM – CISSP – CISA - PCI QSA desirable

This is an opportunity to join an outstanding company in a highly visible and essential role at a senior level. You will gain the opportunity to join a company that is the market leader in its sector and work with fellow high-quality individuals at the forefront of cutting edge technology.

If you have the necessary experience and would like to apply for this role please apply now with an up to date copy of your CV outlining your relevant skills and experience, together with your salary requirements for this role, and your notice period/availability

Similar jobs

Similar jobs