Head of Information Security

Recruiter
Undisclosed Company
Location
North Yorkshire, Middlesbrough
Salary
£55000 - £70000 per annum
Posted
16 Nov 2016
Closes
30 Nov 2016
Ref
DL0851
Contact
Manpower UK
Sector
IT
Job Type
Permanent
Hours
Full-time
Reporting to the CIO, this is a senior management role and part of the IT Leadership Team. The incumbent will be responsible for the management of the Information Security, Information Assurance and Business Continuity planning, working closely with internal teams and related vendors/suppliers and partners. This will include managing a small internal team and a number of external suppliers.

PRINCIPAL ACCOUNTABILITIES / KEY RESULT AREAS

1.Manages the IT Information Security and risk team, using best practice processes (e.g. ISO ISO/IEC 27001:2013 Information Security Standards).
2.Provides excellent leadership to function working to ensure the consistency of policies and procedures across the Working Links Group functions.
3.Direct responsibility for maintaining IT Security policies and governance, BCP Policies, IT controls and maintenance of policies and processes required for ISO 27001 compliance.
4.Takes responsibility for managing Information Security related issues to successful resolution, maintaining the risk logs and risk management strategy for IA and IS related risks.
5.Leads the development and implementation of new IA policies and procedures, working closely with the IT and business teams to define, design, implement and communicate appropriately inside and outside of the Working Links Group.
6.Works with the IT and other Project teams to Plan and Manage changes to improve Information Assurance.
7.Provides IA input to policy and procedures covering the selection of suppliers, tendering and procurement.
8.Conducts regular IS and IA reviews of Operational Services to ensure controls are being followed.

KNOWLEDGE AND EXPERIENCE

Required for standard acceptable performance:

*Educated to degree level or with equivalent relevant professional experience (CISSP etc.)
*Significant experience of IT Security, Risk or Information Assurance processes in/ amid large organisation preferably with International offices
*ISO27001:2013 experience
*Experience of working with Government bodies including the DWP and MOJ
*Knowledge of Infrastructure Design/Application Design with relevant technical qualifications (e.g. Cisco CCNA, CCSA Check Point)
*Ability to work confidently at a senior level and communicate IT and IA risks in a non-technical way to senior business management and external funders
*Experience of managing 3rd party suppliers in an outsourced relationship
*Proven experience of working within a matrix organisation and building relationships internally with the aim of maximising the effectiveness of internal and external resources
*Experience of working within a standard project management methodology (e.g. PRINCE 2 practitioner or equivalent)
*SC Clearance will be required.

More jobs like this