Arcus FM
Job title:
Information Security Manager
Company:
Arcus FM
Job description
Job Description:OverviewArcus are recruiting for an Information Security Manager to be responsible for leading, implementing and managing the Information Security Management System, while building a new Information Security risk management process and integrate into the wider Arcus risk management model.
ResponsibilitiesAs the Information Security Manager, you will work with the IT teams to govern day-to-day information security compliance e.g. Malware Protection, Security Incidents, Intrusion Detection Systems, Patch management compliance etc. Other duties include;
- Conceptualise and implement an ISO 27001:2013 and GDPR compliant management system.
- Manage the IT Security workstream of initiatives, in order to improve information security within the organisation
- Integrate the new ISMS into the current Arcus Integrated Management System working with the Audit & Governance team.
- Draft and implement Information Security policies throughout the group.
- Collaborate with key stakeholders and business owners for relevant disciplines, i.e. HR, IT, Audit & Governance, etc.
- Provide expert advice and assurance on Information Security related activities to key personnel within the business, including the Board.
- Innovate and introduce new practices, including technology recommendations for Information Security based on industry good practice.
- In conjunction with the Audit & Governance team, conduct internal audits of the business functions with the criteria being: the Arcus management system, industry practice, applicable standards and legislation, and ISO 27001:2013.
- Build and maintain strong relationships with internal personnel and relevant certification, registration and regulatory bodies.
- Create and lead the ongoing awareness and training campaign for Information Security for all Arcus personnel working at all levels, delivering group training sessions where necessary.
- Manage security incidents to closure
- Collaborate on IT risk management
- Coordinate the regular internal and external audit activities including organising participants and managing resulting actions
- Manage internal Security communications program
- Compile and Manage group wide security and compliance metrics reporting
- Work with business and technical functions to align policy to practice and vice versa
QualificationsThe successful candidate will have a demonstrable track record of administering security in Server, Desktop and Network environments, and technical experience of malware protection and data protection technologies. Other requirements include;
- Project Management, or project lead experience
- Experience implementing and managing an ISO 27001:2013 certified management system.
- Expert and proven working knowledge of ISO 27001:2013 and GDPR.
- Strong knowledge of current Information Security threats and trends.
- Experience working in a multi-client environment.
- Exceptional communicator to all levels of the organisation.
- Experience of training personnel with different competencies.
- Able to work in a fast-paced, challenging environment independently.
- Strong stakeholder management and organisation skills.
- Agile approach to working.
- Experience of project management.
- Certified Information Security Manager (CISM) qualification is desirable.
- ISO 27001:2013 or ISO 9001:2015 internal audit qualification is desirable.
- PRINCE2 Foundation / Practitioner is desirable.
- Knowledge of ISO 9001:2015 is desirable.
Benefits of Working at Arcus:
- Salary: £58,000 – £ 63,000
- Up to 10% discretionary bonus scheme, subject to achievement of targets
- Car allowance £5,549
- 25 days annual leave + Bank Holidays
- Contributory pension scheme of matched contributions between 5% and 6%
- Life Assurance
- Salary Sacrifice Electronic Vehicle Scheme
Requisition ID2024-5403
Expected salary
£58000 – 63000 per year
Location
Redditch, Worcestershire
Job date
Sun, 12 May 2024 04:44:00 GMT
To help us track our recruitment effort, please indicate in your email/cover letter where (vacanciesin.eu) you saw this job posting.