Due to large scale growth my client are currently looking to recruit a IT Security Manager to be based in their North Wales HQ .
OVERALL PURPOSE OF JOB:
To support the ICT Management Team in the delivery and maintenance of a technical cybersecurity program, for existing, and future, Information Systems, Digital Services, and associated technology .
To specifically provide effective and efficient communication between the ICT Department and the Information Security and Compliance Department. The Technical Security Manager must be able to translate the ICT-risk requirements and constraints of the business into technical control requirements and specifications, as well as develop metrics for ongoing security control measurements and reporting. The TSM coordinates the technical activities to implement and manage security infrastructure, and to provide regular status and service-level reports to management.
DUTIES AND RESPONSIBILITIES:
*Own the relationship between ICT the IS&C team members, acting as the first point of contact.
*Contribute to the day-to-day running of the ICT department, including strategic support, security liaison, architecture/engineering support and operational support.
*Undertake ITC security audits against existing and proposed ICT systems and services. Translation of technical information to non-technical audiences, providing business context.
*Manage the process of gathering, analysing and assessing the current and future threat landscape, as well as providing the Head of ICT with a realistic overview of risks and threats in the enterprise environment.
*Develop a technical security program from the security projects required to address identified risks and business security requirements.
*Monitor and report on compliance with security policies and promote adherence to policies within the ICT department.
*Develop and maintain an ICT security risk register and feed into the overall force Info-Sec risk register held and managed by IS&C.
*Gather and provide appropriate evidence for internal and external 3rd-party audits. Streamlining this with the development and maintenance of a central knowledge base.
*Represent ICT as a key participant in the information security governance process.
*Review and influence any future product strategies, ensuring security is considered in all cases. Assisting with the scoping of new systems, with a specific focus on the security considerations.
*Develop and maintain an ICT threat management program including, but not limited to, the regulation of vulnerability scanning, system patching, malware protection, threat awareness (feeds) and email protection (spam).
Spring acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers. The Spring Group UK is an Equal Opportunities Employer.
By applying for this role your details will be submitted to Spring. Our Candidate Privacy Information Statement explaining how we will use your information is available on our website.