Enable job alerts via email!
Information Security Manager
ARAG Legal Services UK
West of England
On-site
GBP 50,000 - 75,000
Full time
Boost your interview chances
Create a job specific, tailored resume for higher success rate.
Job summary
ARAG Legal Services UK is seeking an Information Security Manager to lead the security strategy within their Digital Services team. The role involves ensuring compliance with ISO27001, managing risks, mentoring a team, and engaging with various stakeholders to protect the organization’s information assets. A robust background in security frameworks and excellent communication skills are essential for success.
Benefits
Qualifications
- Good understanding of information security frameworks (ISO27001, NIST CSF).
- Demonstrable knowledge of data protection legislation (e.g., GDPR).
- Experience delivering presentations to leadership teams.
Responsibilities
- Manage a small security team and oversee security strategy.
- Ensure compliance with ISO27001 accreditation and report on findings.
- Identify and mitigate information security risks.
Skills
Education
Tools
Job description
Join to apply for the Information Security Manager role at ARAG Legal Services UK
Join to apply for the Information Security Manager role at ARAG Legal Services UK
Get AI-powered advice on this job and more exclusive features.
Direct message the job poster from ARAG Legal Services UK
About The Role
We’re excited to announce an opportunity for an Information Security Manager to join our dynamic Digital Services team at ARAG UK.
As a member of the Digital Services team this role will be at the forefront of ARAG UK’s security strategy, ensuring the confidentiality, integrity and availability of ARAG’s information and information systems. The successful candidate will hold accountability for ensuring our ISO27001 accreditation is adhered to and successfully renewed, as well as assessing the information risk and facilitate remediation of identified vulnerabilities within the company’s network, systems and applications. In addition, you'll look lead on the strategy, road mapping and planning of security in the organisation as well as the management of the information security team
This is an excellent opportunity to report on findings and apply recommendations for corrective & preventative action, whilst identifying opportunities to reduce security risks. Key responsibilities will also include documenting remediation options regarding acceptance or mitigation of risk scenarios, as well as facilitating and monitoring performance of risk remediation tasks, changes related to risk mitigation & reporting on findings. This role will help the company understand security threats and help create strategies to protect ARAG’s assets and interests for multiple ARAG entities.
This is a strategic and hands-on work role, where you will manage a small team, whilst also supporting the Security & Governance Manager driving the IT Security strategy, leading projects, co-ordinating the team’s work and mentoring, coaching & developing them. There will also be a responsibility to work with others in Digital Services and the wider organisation to ensure appropriate leadership and accountability in the security space. The role-holder will engage with our parent company, ensuring our ISMS aligns with their prescribed standards and frameworks, as well as discussing, analysing, planning and executed any required changes and improvements in our Information Security Systems.
We are keen to hear from candidates that possess a high level of technical, organisational and communication skills to fulfil this role. You will also be accountable for contributing to audit responses, specifically in the InfoSec area, and establishing improvements in the response process and standardisation.
About You
We are keen to hear from candidates with a good understanding of information security frameworks, standards and security best practice (ISO27001, NIST CSF, Cyber Essentials, OWASP). You’ll have demonstrable knowledge and adherence to data protection legislation and regulatory requirements (e.g. GDPR, FCA SYSC, PCI DSS), as well as extensive experience and understanding of security analysis tools, defensive technologies and other security technologies (e.g. SIEM, VAS, IDS/IPS, Firewalls, IAM, NAC, patch management, anti-malware).
In addition, the ideal candidate will have:
• Solid understanding of security incident management and incident response processes and activities.
• Strong working knowledge of authentication technologies (e.g. two-factor, multifactor).
• Good knowledge of Zero trust principles (e.g. limiting access to confidential information, limiting remote access to applications, differentiating between corporate and personal devices, trusted endpoints).
• Knowledge of endpoint security solutions (e.g. HIDS, anti-malware, file integrity, DLP).
• AWS and cloud platforms (e.g. SaaS, IaaS, PaaS).
• System administration, supporting multiple platforms and applications.
• Skilled in conducting vulnerability scans and identifying vulnerabilities in systems.
• Good awareness of the current Threat Landscape.
• Good understanding of modern malware: execution methods, persistence, detection, delivery mechanisms and entry points.
• Experience delivering presentations and supporting messaging to leadership teams.
• At a minimum, intermediate level of expertise in IT risk management or a related discipline – for example, security, privacy, business continuity management or compliance.
As a team we are passionate and enthusiastic about what we do. Our people are encouraged to think independently and to take ownership of their work. In return for your commitment we will offer you generous remuneration and attractive benefits package which includes:
- 27 days holiday with the option to buy up to a further 5 days
- Company pension scheme with the option to increase contributions
- Group Income Protection for all employees
- Group Legal Protection for all employees
- European Motor Assistance and Home Emergency Assistance
- Private Medical Insurance
- Salary sacrifice benefits including Cycle scheme
- Access to our employee discounts hub offering exclusive discounts across thousands of retail partners, including discounted gym memberships at over 3,000 gyms across the UK
- The option to join our Sports and Social club which organises discounted events such as theatre visits, wine tasting and shopping trips
If you think you would be a good match for this role and can demonstrate some transferable experience please apply, regardless of whether you meet all the criteria listed above.
- Seniority levelNot Applicable
- Employment typeFull-time
- Job functionInformation Technology
- IndustriesInsurance
Referrals increase your chances of interviewing at ARAG Legal Services UK by 2x
Get notified about new Information Security Manager jobs in City Of Bristol, England, United Kingdom.
Bristol, England, United Kingdom 1 month ago
Yate, England, United Kingdom 2 months ago
Bristol, England, United Kingdom 1 day ago
Bristol, England, United Kingdom 5 days ago
Bristol, England, United Kingdom 5 days ago
Bristol, England, United Kingdom 1 week ago
We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
