Information Security Manager
Posted a month ago
- Redditch, Worcestershire
- Any
- External
- Expires In 2 months
OverviewArcus are recruiting for an Information Security Manager to be responsible for leading, implementing and managing the Information Security Management System, while building a new Information Security risk management process and integrate into the wider Arcus risk management model.
ResponsibilitiesAs the Information Security Manager, you will work with the IT teams to govern day-to-day information security compliance e.g. Malware Protection, Security Incidents, Intrusion Detection Systems, Patch management compliance etc. Other duties include;Conceptualise and implement an ISO 27001:2013 and GDPR compliant management system.Manage the IT Security workstream of initiatives, in order to improve information security within the organisation Integrate the new ISMS into the current Arcus Integrated Management System working with the Audit & Governance team. Draft and implement Information Security policies throughout the group. Collaborate with key stakeholders and business owners for relevant disciplines, i.e. HR, IT, Audit & Governance, etc. Provide expert advice and assurance on Information Security related activities to key personnel within the business, including the Board. Innovate and introduce new practices, including technology recommendations for Information Security based on industry good practice. In conjunction with the Audit & Governance team, conduct internal audits of the business functions with the criteria being: the Arcus management system, industry practice, applicable standards and legislation, and ISO 27001:#####. Build and maintain strong relationships with internal personnel and relevant certification, registration and regulatory bodies. Create and lead the ongoing awareness and training campaign for Information Security for all Arcus personnel working at all levels, delivering group training sessions where necessary. Manage security incidents to closureCollaborate on IT risk managementCoordinate the regular internal and external audit activities including organising participants and managing resulting actionsManage internal Security communications programCompile and Manage group wide security and compliance metrics reportingWork with business and technical functions to align policy to practice and vice versa QualificationsThe successful candidate will have a demonstrable track record of administering security in Server, Desktop and Network environments, and technical experience of malware protection and data protection technologies. Other requirements include;Project Management, or project lead experienceExperience implementing and managing an ISO 27001#####3 certified management system. Expert and proven working knowledge of ISO 2700#####13 and GDPR. Strong knowledge of current Information Security threats and trends. Experience working in a multi-client environment. Exceptional communicator to all levels of the organisation. Experience of training personnel with different competencies. Able to work in a fast-paced, challenging environment independently. Strong stakeholder management and organisation skills. Agile approach to working. Experience of project management. Certified Information Security Manager (CISM) qualification is desirable. ISO 270#####013 or ISO 9#####2015 internal audit qualification is desirable. PRINCE2 Foundation / Practitioner is desirable. Knowledge of ISO 9001:2015 is desirable. Benefits of Working at Arcus:Salary: £58,000 - £ 63,000Up to 10% discretionary bonus scheme, subject to achievement of targetsCar allowance £5,54925 days annual leave + Bank HolidaysContributory pension scheme of matched contributions between 5% and 6%Life AssuranceSalary Sacrifice Electronic Vehicle Scheme Requisition ID#####-5403
#J-18808-Ljbffr
ResponsibilitiesAs the Information Security Manager, you will work with the IT teams to govern day-to-day information security compliance e.g. Malware Protection, Security Incidents, Intrusion Detection Systems, Patch management compliance etc. Other duties include;Conceptualise and implement an ISO 27001:2013 and GDPR compliant management system.Manage the IT Security workstream of initiatives, in order to improve information security within the organisation Integrate the new ISMS into the current Arcus Integrated Management System working with the Audit & Governance team. Draft and implement Information Security policies throughout the group. Collaborate with key stakeholders and business owners for relevant disciplines, i.e. HR, IT, Audit & Governance, etc. Provide expert advice and assurance on Information Security related activities to key personnel within the business, including the Board. Innovate and introduce new practices, including technology recommendations for Information Security based on industry good practice. In conjunction with the Audit & Governance team, conduct internal audits of the business functions with the criteria being: the Arcus management system, industry practice, applicable standards and legislation, and ISO 27001:#####. Build and maintain strong relationships with internal personnel and relevant certification, registration and regulatory bodies. Create and lead the ongoing awareness and training campaign for Information Security for all Arcus personnel working at all levels, delivering group training sessions where necessary. Manage security incidents to closureCollaborate on IT risk managementCoordinate the regular internal and external audit activities including organising participants and managing resulting actionsManage internal Security communications programCompile and Manage group wide security and compliance metrics reportingWork with business and technical functions to align policy to practice and vice versa QualificationsThe successful candidate will have a demonstrable track record of administering security in Server, Desktop and Network environments, and technical experience of malware protection and data protection technologies. Other requirements include;Project Management, or project lead experienceExperience implementing and managing an ISO 27001#####3 certified management system. Expert and proven working knowledge of ISO 2700#####13 and GDPR. Strong knowledge of current Information Security threats and trends. Experience working in a multi-client environment. Exceptional communicator to all levels of the organisation. Experience of training personnel with different competencies. Able to work in a fast-paced, challenging environment independently. Strong stakeholder management and organisation skills. Agile approach to working. Experience of project management. Certified Information Security Manager (CISM) qualification is desirable. ISO 270#####013 or ISO 9#####2015 internal audit qualification is desirable. PRINCE2 Foundation / Practitioner is desirable. Knowledge of ISO 9001:2015 is desirable. Benefits of Working at Arcus:Salary: £58,000 - £ 63,000Up to 10% discretionary bonus scheme, subject to achievement of targetsCar allowance £5,54925 days annual leave + Bank HolidaysContributory pension scheme of matched contributions between 5% and 6%Life AssuranceSalary Sacrifice Electronic Vehicle Scheme Requisition ID#####-5403
#J-18808-Ljbffr
.webp "Apply4U | Sign Up")
.webp "Apply4U | Contact Us")
.webp "Apply4U | Sign up")
