IT Security Manager

IT Security Manager

Our client is a large international organization seeking to recruit an IT Security Manager with 5 to 8 years of proven expertise.

Responsibilities:

1. Provide advice, support, and guidance to all company corporate functions to help them maintain and improve their information security maturity.
2. Collaborate across all areas of the company to promote information security and build networks and relationships.
3. Act as a subject matter expert on IT security, including legal and regulatory compliance.
4. Advise corporate functions on achieving required controls and support the development and application of standards aligned with group security policies.
5. Participate in business unit projects, providing support, guidance, validation, and overall security assurance, including sitting on major project steering committees.
6. Support the security by design ethos and methodology.
7. Assist GRC in building, implementing, and facilitating mechanisms for business units to assess and measure security compliance.
8. Drive the development of security roadmaps for business units/divisions, overseeing non-conformities to inform the CISO roadmap.
9. Coach, train, and educate IT and business functions to enhance security maturity; contribute to the company's information security community.
10. Produce, implement, and standardize protocols and guidance materials, such as asset register templates and third-party due diligence processes.
11. Facilitate and chair security working group meetings.
12. Manage third-party relationships to support the company and its affiliates.
13. Support procurement and tendering processes related to security.
14. Raise security baseline controls and standardize where appropriate.
15. Align security initiatives with different business requirements and objectives.

Security Operations Support:

• Continuously improve information security awareness across the group, including phishing campaigns and reporting.

Experience:

• Experience in an information security risk leadership role within a large organization.
• Confidence in presenting and discussing ideas with senior stakeholders.
• Experience in security risk governance processes and structures.
• Familiarity with industry standards such as ISO27001 and NIST CSF.
• Experience in creating, implementing, and assessing security policies and standards.

Skills and Attributes:

• Ability to analyze complex problems and develop practical solutions.
• Skill in bridging the gap between technical and business perspectives on security risks.
• Practical and pragmatic approach to security initiatives.
• Conflict resolution skills and influencing abilities.
• Business acumen and understanding of business risks and security implications.
• Ability to prioritize risks and controls effectively.
• Strong communication skills to maximize buy-in and understanding.
• Data analysis skills with sound judgment on evidence.
• Experience in managing budgets and security incident management.
• Knowledge of security assessments, assurance activities, and compliance management.
• Operational responsibility for third-party management and change management.
• Leadership skills, including coaching, setting targets, and developing relationships across all levels.

The role is based in Central London, requiring presence in the office at least 3 days a week. The salary package is £75K-£85K plus benefits. Please send your CV in Word format, along with your salary expectations and availability, for this exciting opportunity.