I am an IT security recruitment consultant working with candidates and companies in the data loss and leak prevention sector. I specialise in recruiting professional services, pre-sales and architects and consultant sales. I particularly enjoy meeting and working with new clients and candidates.
IT Security & Goverance Manager
IT Security & Goverance Manager
IT Security & Governance Manager Shoreham - by -Sea West Sussex This position is either a part time position of 3 days a week or a full time position
Job DescriptionIT Security & Governance Manager
Shoreham - by -Sea West Sussex
This position is either a part time position of 3 days a week or a full time position
Articulate complex information security concepts, including external and internal threats, to senior executives and non-technical employees while accurately portraying real risks and threats to the company. Developing strategies and solutions to maintain an appropriate level of IT security.
Design, implementation and operation of information security controls, supporting policies and technologies which allow to effectively and efficiently operate.
Responsible for implementation & maintenance of any formal security certification the company may elect to attain e.g. ISO27001
Own and manage all Information Security Incidents, act as primary triage, providing clear and timely actions & information to stakeholders.
Prepare, socialise and rehearse procedures (playbooks) to guide response to security incidents.
Increase awareness of IT Security best practices, ensure policies & standards are widely communicated and embraced.
Increase the maturity of IT General Controls (ITGC).
Create and maintain the IT Risk register, along with Risk & Controls matrix.
Ownership of all audits, and Internal Control Questionnaires (ICQ) affecting IT, ensuring prepared for and closed within agreed timescales.
Achieve any other objectives set for the Technology function from time to time.
Comprehensive understanding of Information Security standards, technology, and threats, as well as experience with applicable regulatory and standards frameworks.
5+ years in an information security environment, identifying risks and proposing viable solutions. Deep and broad understanding related to security encompassing control technologies, policies and standards, risk and compliance, audit, data privacy etc.
An understanding and experience of applying and implementing the following: Platform Security, Data Security, Network Security, Perimeter Security, Physical Security, Security Assessment Tools and Security Monitoring Tools.
Preferable to have hands on experience of IT management, including implementing IT best practices and understanding of the requirements of ISO 27001 standards and the practical application of them.
CISSP / CISM or CISA qualification advantageous.
Self-motivated with the drive and determination to deliver both short term and longer range objectives. Strong interpersonal skills, self-confident and able to develop a rapport with stakeholders in different jurisdictions. Able to drive change, motivate and lead a team to achieve goals in a matrix management environment.
Pragmatism and willingness to be hands on in order to deliver fit for purpose solutions.
Sound judgement, able to react promptly to changing priorities and deadlines.
Educated to degree level or equivalent.
If you would like to talk further please call me on 02392 458 047
Please email your CV
This vacancy is being advertised by Advanced Resource Managers. ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions.
Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission
Advanced Resource Managers IT Limited operates & advertises as an Employment Agency for permanent positions and as an Employment Business for contract/temporary positions.