Information Security Manager

Job Description

This is an outstanding opportunity to lead the Cyber Security function for a leading Energy business; one with an international reach.

In this role you will create performance measurements, coordinate technical efforts to maintain security infrastructure, and convert IT risk needs into technical control specifications. Additionally, you will be required to strike a balance between business imperatives like performance, speed, and agility and real-world risks.

1. Work with senior members of the business to create a security program and initiatives.
2. Evaluate and document dangers, both present and potential.
3. Make budget estimates for both immediate and long-term objectives.
4. Keep an eye on and enforce adherence to security regulations.
5. Suggest policy modifications for compliance and efficiency.
6. Oversee and cultivate a group of security experts.
7. Help with replies to security audits.
8. Offer security awareness, training, and communication.
9. Take part in change management and handle production-related difficulties.
10. Take part in the governance process for information security.
11. Work with stakeholders to define KPIs and reporting plans.
12. Encourage efforts to comply with laws and regulations.
13. Assure software, hardware, and application security.
14. To enforce security regulations, put technical controls in place.
15. Sync technical, security, and business needs.
16. Establish a strong relationship with the IT security group.
17. Provide an analysis of the technical aspects of security management.
18. Oversee outsourced vendors for security-related tasks.
19. Organise reporting and incident management.
20. Keep up with the latest security laws and developments.
21. Control actions related to threats and vulnerabilities.
22. Offer advice on security-related issues for IT initiatives.
23. Help with testing and planning for disaster recovery.
24. Check system logs and audit trails for compliance.

As well as having an impressive track record of leadership in an IT function, hands-on experience specifically in Security is required as is the ability to interface and communicate with key stakeholders across the business. Any formal security certifications (CISSP, CISM) and experience with cyber security control frameworks would also be beneficial!

Get in touch for more information!