IT Security Manager

Jenrick Commercial
Kingston Upon Thames, UK
11 Oct 2019
25 Oct 2019
Contract Type
Full Time
IT / Information Security Manager, Kingston upon Thames, Up to £75,000 per annum + Blue Chip Benefits i.e. generous bonus scheme, car/car allowance, and a comprehensive range of benefits, including 25 days holiday (plus 3 days for Christmas closure, plus public holidays), pension, life assurance, private health care, income protection, discounted online shopping, CycleScheme.IT/ Information Security Manager Overview:

Based in our clients modern offices in the Kingston upon Thames area, and reporting into the Director of Business Transformation, this will be a highly visible role which will be responsible for developing, implementing and maintaining information security standards, policies and procedures.

The role is responsible for all information security matters, ensuring the UK business has appropriate technical and physical security measures in place, supported by effective security standards, policies, procedures and training. The role will ensure that the UK security standards satisfy all relevant industry and legislative requirements


Take the lead on collaborating within the business with regards to information security;

Responsible for achieving and maintaining appropriate standards / certification (e.g. ISO 27001);

Proactively enabling colleagues in identifying, developing, implementing, and maintaining security processes, practices, and policies to reduce risk;

Performing business impact analysis, risk assessment and resulting treatment;

Undertake response analytics during and after an incident, determining root cause and proper mitigation;

Remain up to date with the latest threats and vulnerabilities to ensure operational tools and processes are up to date;

Ensure that all practices internally protect customer information;

Participate in any external audit activities;

Delivery of internal training programmes and materials;

Work with the Global security functions to develop, implement and monitor a strategic, comprehensive enterprise information security programme;

Working with designated members of the Legal team to help advise and provide input on security related matters;

Collaborating with architecture team to Provide Guidance to the product development teams in securing the products and services in line with industry standards and contractual obligations;

Overarching ownership for responding to RFPs and supporting cross functional teams to respond appropriately to customer due diligence queries;

Serve as the primary point of contact for security queries within the UK business;

Review divisional compliance with Global Businesses policies and procedures and discuss high risk findings with divisional representatives through the relevant IS Advisory Group;

Review and approval of all technology investments as they relate to information security

Information Security Manager Ideal Background:

Suitable candidates will be CISSP / CISM / ISO 27001 LI / MInstISP qualified (or equivalent), eligible to work in the UK, and be able to demonstrate the following:

Strong experience of taking a company through the ISO27001 certification journey from start to finish;

Experience of working independently, with a "roll your sleeves up" attitude to the role;

Strong customer facing skills, with the ability to communicate effectively, and with gravitas;

Experience of leading a team in a virtual/project environment;

Will have had exposure to architecture, development or operational teams;

Understanding of Security Architecture and Frameworks;

Will have a broad understanding of cloud computing infrastructure ( e.g. Microsoft Azure);

Good understanding of the security controls required to protect web-based services and the data they process and store;

Extensive knowledge of Information Security regulatory requirements;

Understanding of GDPR/DPA2018;

Sufficient/working knowledge of EU data privacy and data protection regulation e.g. GDPR/DPA2018;

Strong change and project management skills, including the ability to manage time well, prioritise effectively and handle multiple deadlines in a pragmatic way;

Detail-oriented approach needed to recommend and implement strategic improvements;

Ability to handle confidential and sensitive information with the appropriate discretion

This job was originally posted as

Similar jobs

Similar jobs