Cyber Security Manager

Nigel Wright is supporting an organisation undergoing digital transformation in recruiting an experienced Cyber Security Manager. Joining a growing team, you will play a pivotal role in overseeing cyber security across IT services. As a Cyber Security Manager, you will take on the essential responsibility of building strong relationships with key suppliers and cultivating a security–focused culture that ensures robust, sustainable cyber practices. Working closely with service providers, you will lead oversight in areas critical to the business's cyber security posture, including governance, incident management, and ongoing security assessments. Your primary goal is to provide assurance that all aspects of Cyber Security meet and exceed compliance requirements, are aligned with the latest threats, and are continually improved. They have a hybrid working policy where you will be required in the office 2 –3 days a week. Applicants will need to be able to secure SC clearance.

Your main areas of responsibility will be:

• Supplier Relationship Management: Forging strong, collaborative relationships with service providers and ensure they uphold a security–focused approach.
• Cyber Security Oversight: Overseeing and assuring the agreed security plans are met across each service line, including regular governance activities, such as:
  • Incident Management and Cyber Security Testing, including regular reviews of supplier–led security testing
  • Security Awareness: Assuring the training and awareness efforts conducted by suppliers, ensuring consistent messaging and practices
  • Horizon Scanning: Proactively identifying and assessing emerging threats
  • Technical Advisory: Advise on technical areas relevant to architecture and other security requirements within your service area as needed.

With proven background as a Cyber Security professional with experience at the managerial level, you will be adept at managing and influencing third–party suppliers. While this role is governance, risk, and compliance (GRC) focused, a technical background or understanding is advantageous for advising on architecture and technical security needs, will be required. Familiarity with NIST Cyber Security Framework (CSF), with experience implementing or assuring the NIST CSF framework is desirable. Though experience within the banking or financial services industry is preferred, candidates from other sectors will also be considered.