Description
Security and Assurance Manager - upto60k DOE - MidlandsSecurity and Assurance Manager NEEDED
Purpose of Job
- Provides vision, strategy, broad-based planning, and hands-on responsibility for all IT Security and Service Continuity related matters
- Act as an advocate for IT security and Service Continuity needs and assume responsibility for the development and delivery of the comprehensive strategy which aligns with group to provide assurance
- Define, develop and continuously improve the IT security program which leverages collaborations, facilitates IT security governance, and minimize IT risks for the Group.
- Provide management on-call cover for our 24/7 operations
Principal Accountabilities:
- Define, implement and promote a divisional-wide vision - consistent with the Group's strategic plan and priorities - for IT Security policies, technologies, standards, goals and metrics that is fully endorsed by the Group's executive management team, through collaboration with departments such as HR, Legal, Internal Audit and Group Security.
- Provide divisional-wide leadership and strategic direction for IT Security, ranging from planning and budgeting to motivational and promotional activities expounding the value of IT Security among all staff in the division.
- Design and establish an organisational risk management framework that assesses external and internal IT related risks. Understands the trade-offs required to manage the different levels of risk tolerance and risk exposure to the business and balances this with an appropriate levels of investments.
- Lead the design, implementation, maintenance and certification (where applicable) of the IT Security Management System aligned with standards like ISO/IEC 27000 series, PCI/DSS, Data Protection Laws, and Data Protection Regulations.
- Take personal accountability on the compliance to IT Security standards across all of the AUKT.
- Provide leadership and guidance to the definition and implementation of the IT Security standards and processes.
- In conjunction with relevant business functions and third parties lead activities relating to contingency planning, business continuity management and IT disaster recovery in context of IT service unavailability.
- Through all available methodologies and channels (e.g. desktop studies, vulnerability assessments and penetration tests) audits IT compliance and IT Security protection levels on a regular basis.
- To ensure that new and significantly altered technology is secure by design' - ensuring that technology has an appropriate level of security, confidentiality, integrity and availability.
- Responsibility for both creating and reviewing designs for new/amended technology to ensure they comply with group and national security standards whilst still meeting the requirements of the local businesses.
- Leads IT Security operations to ensure that emerging new security threats and risks such as cyber-attacks, viruses, malware, spyware etc., to the division's IT systems, operations, brand and reputation are protected at an appropriate level.
- Ensure an effective response to incidents, and the business' information assets are secured.
- Provides leadership to the development and implementation of an IT Security and Service Continuity technologies roadmap
- Chair Security and Disaster Recovery incidents ensuring lessons learnt are captured and improvement plans developed to avoid repeats
- Develop and manage the IT Risk Register
This is a really exciting time for the company, and they are eager to seek team players, innovators and proven design professionals. The site is very nice, and they are in a beautiful part of West Midlands. The company offer a very generous benefits scheme which includes 25 days holiday, pension scheme, private healthcare and a bonus dependant on company performance.
If you would like to learn more about the role, and think you have the skill set required, please get in contact with me at Computer Futures on .
I am also looking to grow my connections on LinkedIn, click the Link and connect today!
https://uk.linkedin.com/pub/dwayne-ramsey/