Information Security Manager

Recruiter
Monarch IT Recruitment
Location
Coventry
Posted
27 Nov 2018
Closes
10 Dec 2018
Contract Type
Permanent
Hours
Full Time
Information Security Manager – Security Testing Location: Coventry Salary: Competitive Monarch IT is looking for an Information Security Manager to represent a market leading Retail Group. The opportunity will play a key role in the Group Information Security Team. You will be responsible for managing a team of Information Security Testers responsible for delivering appropriate Security Testing of Products during delivery and as required during the end to end product lifecycle. This will include Penetration Testing and as part of the Secure Software Development Lifecycle; code review, infrastructure scanning and web application scanning Currently the Information Security team has around 60 employees and following a recent acquisition they are now looking to further grow their Information Security team within a great company cultural environment and opportunities to further develop you skillset with training and development from some of the leading industry experts. Responsibilities: Leads a team of technical resources engaged in delivering IT Security Testing Services i.e. Manage internal security assurance for internally developed applications within a DevOps environment Scope penetration testing for both internal and external facing applications with external testing providers Manage external resources to ensure that penetration testing is carried out to a suitable standard on time and within budget Manage the internal vulnerability scanning programme to ensure that scans are planned and carried out in a timely manner Responsible for ensuring that vulnerabilities identified via internal scanning programme or external penetration testing are suitably mitigated and any residual risks are documented and formally accepted Conduct Information Security Risk Assessments using the Information Security Risk Management Process Responsible for the information security management discipline, ensuring an effective and coordinated set of processes are developed and maintained across all services, suppliers and customers: Ensures the Information / document / content storage, retention and management policies and procedures are maintained and aligned to industry best practice Ensures the benefits of Information security and concept of risks is understood by all colleagues Pro-actively manages security risk assessments and mitigation plans to address risks within agreed timescales, evaluating business impact Provides advice and guidance associated with the planning, design, implementation and improvement of system security taking account of current best practice, legislation and regulation Experience: Degree or relevant industry experience (Info Sec, IT or technology projects) CISSP, CISM, CCSP, CEH or equivalent certified (preferred) Knowledge of OWASP vulnerabilities, tools and methodologies Knowledge of HTTP, PCI ASV and SSDLC Strong current Knowledge of ISO27001, Data Protection Act and PCI DSS. Expert in methods and techniques for risk management, business impact analysis, countermeasures and contingency arrangements relating to the serious disruption of IT services Demonstrates extensive knowledge of good security practice covering the physical and logical aspects of information products, systems integrity and confidentiality Expert in tools or systems which provides access security control (i.e. prevents unauthorised system access) For more information contact Lionel on 01212373357 or email lionel.d.a4lglno4s25@monarchit.aptrack.co.uk

Similar jobs

Similar jobs