IT Systems Security Manager

IT Security Manager

Our client, a large international organization, is seeking an experienced IT Security Manager with 5 to 8 years of proven expertise.

Responsibilities:

1. Provide advice, support, and guidance to all corporate functions to maintain and improve information security maturity.
2. Collaborate across company functions to promote information security and build networks and relationships.
3. Act as a subject matter expert on IT security, including legal and regulatory compliance.
4. Advise on achieving security controls and support the development of standards aligned with group policies.
5. Participate in projects, offering support, guidance, and security assurance, including involvement in steering committees.
6. Promote security by design principles.
7. Assist in building mechanisms to assess and measure security compliance.
8. Develop and oversee security roadmaps for business units/divisions, addressing non-conformities.
9. Train and educate staff to enhance security maturity.
10. Contribute to the company's information security community, sharing lessons learned.
11. Create and standardize protocols and guidance materials, e.g., asset registers, third-party due diligence.
12. Facilitate security working group meetings and manage third-party relationships.
13. Support procurement and tendering processes related to security.
14. Raise security baseline controls and standardize practices where appropriate.
15. Align security initiatives with business objectives and understand diverse business requirements.

Experience:

• Leadership in information security risk management within large organizations.
• Confidence in engaging with senior stakeholders and presenting ideas.
• Experience with security risk governance processes.
• Knowledge of industry standards like ISO27001, NIST CSF.
• Proven ability to develop, implement, and evaluate security policies and standards.

Additional Skills:

• Analytical skills to solve complex problems and communicate solutions effectively.
• Ability to bridge technical and business perspectives on security risks.
• Practical approach to security initiatives, with conflict resolution skills.
• Business acumen to understand risks and security implications.
• Prioritization skills to distinguish essential controls from optional ones.
• Effective communication tailored to different audiences.
• Data analysis skills and judgment to determine when further analysis is needed.
• Budget management capabilities.

Responsibilities:

• Manage information security incidents and assurance activities such as penetration testing.
• Oversee security compliance management and reporting, including regulatory requirements.
• Lead change management initiatives related to security projects.
• Work effectively with stakeholders at all levels, including senior management.

The role is based in Central London, requiring presence at least 3 days a week. The salary range is £75K–£85K plus benefits. Interested candidates should send their CV in Word format, including salary expectations and availability.