Information Security Manager - Nottingham

Knownfour ,
Nottingham, Nottinghamshire
Job Type: Full-time
Salary: £60000 - £70000 per annum, Benefits: Bonus & Benefits

Overview

Information Security Manager - Nottingham Our client is a national organisation offering a unique collection of specialisms across the commercial, public, health and insurance sectors, with offices UK wide. They have long-standing relationships with an impressive range of clients and aim to truly understand their needs to deliver an exceptional service. The Role The role will report directly to the Head of department and will work closely with the business in identifying and managing the companies risks around information/cyber security and data protection The role will ensure compliance with accreditations including ISO27001 and Cyber Essentials Plus as well as data protection The role will provide support, education and training to build risk awareness within the organisation The ideal candidate will have previous experience of managing information/cyber security risks Responsibilities - Management of the Information Security Management System (ISMS) including ISMS objectives to ensure compliance with ISO27001 & cyber essentials plus - Review, implement and embed the information and cyber security policies - Manage the annual internal audit program and conduct internal audits - Identify and implement remediation actions as required - Work with IT to ensure planning and execution of security testing is effective in identifying key security risks - Responsible for managing client audits relating to information/cyber security - Responsible for managing the due diligence around information/cyber security and data protection in relation to suppliers and third parties - Incident and breach management involving information/cyber security and data protection including escalation, mitigation & reporting - Completion and sign off of Data Protection Impact Assessments (DPIAs) ensuring that security and data protection is appropriately considered Skills & Experience - Proven working knowledge of ISO27001 and GDPR - Information security certification (eg CISSP) strongly preferred - Certified Information Security Manager (CISM) qualification is desirable - Knowledge of ISO9001 is desirable - Strong understanding of security controls - Strong understanding of assurance methodologies and testing protocols - Excellent communication skills, both written and oral and the ability to explain and advise succinctly on technical issues to non-technical individuals - Strong analytical skills with a pragmatic "problem-solving" approach with an ability to influence - Confidence to take responsibility and work independently while keeping others informed of progress and escalating issues where appropriate - Excellent organisational skills with the ability to plan, organise and prioritise tasks and projects to meet deadlines and adapt quickly to changing priorities - Proven team player Please email you CV asap to apply for this position