The following job is no longer available:
Cyber Security Governance Manager
Cyber Security Governance Manager
Cyber Security Governance Manager
Posted 25 days ago
- London, Greater London
- Any
- External
- Expired - 2 months ago
This job is brought to you by Jobs/Redefined, the UK's leading over-50s age inclusive jobs board.
The Role
Position: Cyber Security Governance Manager
Contract Type: Full-Time
Reporting To: Group Cyber Security Officer
Location: London
About the Role
The role will be responsible for a number of activities and take ownership of the continued improvement of our cybersecurity capabilities on behalf of the Group Cyber Security Officer. The role will liaise with our key stakeholders to ensure that our security posture and the security standards are implemented and maintained to best industry practices. This is an opportunity for the successful candidate to shape cybersecurity governance across Blinx and their internal customer base in order to drive and improve the security culture of the organisation.
Key Responsibilities
Drive a governance structure that outlines reporting lines, security-related roles and responsibilities across the portfolio of internal customers and Blinx Technology.
Guide the keys stakeholders to ensure sound cybersecurity decision making can be made.
Develop and maintain appropriate cybersecurity policies, procedures and standards and ensure they are aligned with any regulatory requirements and industry best practices.
Establish a security risk management framework for Blinx, define risk appetite and tolerance levels and conduct regular risk assessments and vulnerability scans.
Support the Security Operations Manager in defining suitable security awareness and training packages.
Assess and manage cybersecurity risks associated with third-party vendors and service providers. Implement the vendor risk assessment processes and ensure cybersecurity contractual requirements for cybersecurity are considered.
Support, where appropriate, cybersecurity incidents and attend the cybersecurity operation meetings.
Support and advise on the deployment of appropriate tools and technologies, and ensure that they align with the organisational security standards.
Monitor regulatory changes and ensure compliance with laws, regulation and industry standards. Prepare security and risk reports to the Blinx Leadership and where required internal customer executive tams. Support IT transformation projects, providing through-life assurance to ensure best industry practices are implemented.
Conduct regular review and assessments of cybersecurity controls and processes. Implement lessons learned to ensure continued improvement, and stay abreast of emerging threat, vulnerabilities and best practices in cybersecurity.
Foster collaboration and communication with other departments and business units to ensure alignment of cybersecurity initiatives with business objectives. Establish channels for reporting cybersecurity concerns and incidents.
Your Professional Experience and Skills:
At least five years of working in a similar role.
Strong stakeholder engagement and interpersonal skills with excellent written reports and presentation skills.
Problems solving skills with an aptitude for identifying complex cybersecurity challenges and developing innovative solutions to address them effectively.
Technical experience
Must have technical experience:
Demonstrable understanding of cybersecurity principles, frameworks (such as ISO27001, NIST, etc.) and best practices; including knowledge of various security technologies, threat landscape, vulnerabilities and mitigation strategies.
Familiarity with regulatory and compliance requirements (such as GDPR, HIPAA, PCI DSS, etc.).
Proficiency in risk management and assessment methodologies.
Proven policy, procedure and standard development in all areas of cybersecurity.
Exceptional skills in conducting cybersecurity assessments and audits, with the ability to interpret results and present to leadership.
Nice to have technical competencies:
Knowledge of cloud security frameworks and technologies, such as Azure.
Understanding of vulnerability assessment techniques and practices.
Cybersecurity incident response and management experience.
Qualifications
Two or more of the following certifications:
CISSP,
CISM,
CRISC,
CISA,
ISO27001 Lead Implementer.
Our benefits
Bonus discretionary bonus - up to 15%
Training and development partnered with accredited training providers to give everyone opportunities to build their career and develop skills.
Pension provided by Aegon, 6% employer contribution with a minimum of 3% employee (after 3 months)
Private Medical Insurance provided by Bupa (after 3 months)
Annual leave 25 days plus bank holidays - 5 day roll over
Life assurance 4 times annual salary - provided by legal and general (after 6 months)
Season ticket loan payable over 10 months - available straight away
Ride to work scheme through Evans (after 3 months)
Hybrid working model 2 days remote.
#J-18808-Ljbffr
The Role
Position: Cyber Security Governance Manager
Contract Type: Full-Time
Reporting To: Group Cyber Security Officer
Location: London
About the Role
The role will be responsible for a number of activities and take ownership of the continued improvement of our cybersecurity capabilities on behalf of the Group Cyber Security Officer. The role will liaise with our key stakeholders to ensure that our security posture and the security standards are implemented and maintained to best industry practices. This is an opportunity for the successful candidate to shape cybersecurity governance across Blinx and their internal customer base in order to drive and improve the security culture of the organisation.
Key Responsibilities
Drive a governance structure that outlines reporting lines, security-related roles and responsibilities across the portfolio of internal customers and Blinx Technology.
Guide the keys stakeholders to ensure sound cybersecurity decision making can be made.
Develop and maintain appropriate cybersecurity policies, procedures and standards and ensure they are aligned with any regulatory requirements and industry best practices.
Establish a security risk management framework for Blinx, define risk appetite and tolerance levels and conduct regular risk assessments and vulnerability scans.
Support the Security Operations Manager in defining suitable security awareness and training packages.
Assess and manage cybersecurity risks associated with third-party vendors and service providers. Implement the vendor risk assessment processes and ensure cybersecurity contractual requirements for cybersecurity are considered.
Support, where appropriate, cybersecurity incidents and attend the cybersecurity operation meetings.
Support and advise on the deployment of appropriate tools and technologies, and ensure that they align with the organisational security standards.
Monitor regulatory changes and ensure compliance with laws, regulation and industry standards. Prepare security and risk reports to the Blinx Leadership and where required internal customer executive tams. Support IT transformation projects, providing through-life assurance to ensure best industry practices are implemented.
Conduct regular review and assessments of cybersecurity controls and processes. Implement lessons learned to ensure continued improvement, and stay abreast of emerging threat, vulnerabilities and best practices in cybersecurity.
Foster collaboration and communication with other departments and business units to ensure alignment of cybersecurity initiatives with business objectives. Establish channels for reporting cybersecurity concerns and incidents.
Your Professional Experience and Skills:
At least five years of working in a similar role.
Strong stakeholder engagement and interpersonal skills with excellent written reports and presentation skills.
Problems solving skills with an aptitude for identifying complex cybersecurity challenges and developing innovative solutions to address them effectively.
Technical experience
Must have technical experience:
Demonstrable understanding of cybersecurity principles, frameworks (such as ISO27001, NIST, etc.) and best practices; including knowledge of various security technologies, threat landscape, vulnerabilities and mitigation strategies.
Familiarity with regulatory and compliance requirements (such as GDPR, HIPAA, PCI DSS, etc.).
Proficiency in risk management and assessment methodologies.
Proven policy, procedure and standard development in all areas of cybersecurity.
Exceptional skills in conducting cybersecurity assessments and audits, with the ability to interpret results and present to leadership.
Nice to have technical competencies:
Knowledge of cloud security frameworks and technologies, such as Azure.
Understanding of vulnerability assessment techniques and practices.
Cybersecurity incident response and management experience.
Qualifications
Two or more of the following certifications:
CISSP,
CISM,
CRISC,
CISA,
ISO27001 Lead Implementer.
Our benefits
Bonus discretionary bonus - up to 15%
Training and development partnered with accredited training providers to give everyone opportunities to build their career and develop skills.
Pension provided by Aegon, 6% employer contribution with a minimum of 3% employee (after 3 months)
Private Medical Insurance provided by Bupa (after 3 months)
Annual leave 25 days plus bank holidays - 5 day roll over
Life assurance 4 times annual salary - provided by legal and general (after 6 months)
Season ticket loan payable over 10 months - available straight away
Ride to work scheme through Evans (after 3 months)
Hybrid working model 2 days remote.
#J-18808-Ljbffr
.webp "Apply4U | Sign Up")
.webp "Apply4U | Contact Us")
.webp "Apply4U | Sign up")
