Information and Cyber Security Senior Manager
Location
Inverness, Highland | United Kingdom
Job description
Summary and Overview
- Information and Cyber Security, Senior Manager
- UK home based
- Permanent
- Full Time
- Competitive Salary and Benefits
You'll own and manage all aspects of information security and cyber security for Equiom Group, including policies, processes, controls and the execution of remediation activities.
You will work closely with a number of senior stakeholders across Equiom Group providing Subject Matter Expertise advice to IT projects that need information security support and ensure that cyber security investment is properly targeted.
You'll act as an advisor to the Group Technology teams and ensure all access to data held on Equiom Group systems is conducted in accordance with policies and procedures.
You will need excellent communication skills and a sound knowledge of Cyber Security, you will be responsible for acting as the escalation point for any issues arising and will communicate the outcomes to senior stakeholders ensuring that all risks are identified, understood and managed.
Your New Role
Your role and responsibilities will grow and adapt to the changing needs of the business. Below are the core duties of the role, which is not exhaustive;
- Support the development and maintenance of a risk and controls culture across Equiom Group, including continuous communication with controls operators and owners across the global business
- Manage and maintain the global ISO 27001 Certification
- Maintain and monitor a strategic, comprehensive enterprise information security and IT risk management program to ensure that the integrity, confidentiality, and availability of information is maintained in respect of information owned, controlled or processed by Equiom Group globally
- Maintain and publish up-to-date information security policies, standards and guidelines. Oversee the approval, training, and dissemination of security policies and practices
- Create and manage information security and risk management awareness training programs for all employees, contractors and approved system users
- Oversee a risk-based process for vendor risk management, including the assessment and treatment for risks that may result from partners, consultants and other service providers
- Work directly with the Head of Risk to facilitate IT risk assessments and work with stakeholders throughout the enterprise on identifying acceptable levels of residual risk
- Provide independent assurance that the right activities are in place to mitigate identified risks
- Manage security incidents and events to protect corporate IT assets, including intellectual property, regulated data and the company's reputation
- Monitor the external threat environment for emerging threats and advise relevant stakeholders on the appropriate courses of action
- Liaise with external agencies, such as law enforcement and other advisory bodies as necessary, to ensure that Equiom Group maintains a strong security posture
- Coordinate the use of external resources involved in the information security program, including, but not limited to, interviewing, negotiating contracts and fees, and managing external resources
- Develop and oversee effective disaster recovery policies and standards for the business to align with enterprise business continuity management program goals
- Coordinate the development of implementation plans and procedures to ensure that business-critical services are recovered in the event of a security event. Provide direction, support and in-house consulting in these areas
- Facilitate a metrics and reporting framework to measure the efficiency and effectiveness of the program, facilitate appropriate resource allocation, and increase the maturity of the security
- Understand and interact with related disciplines through assurance meetings to ensure the consistent application of policies and standards across all technology projects, systems and services, including, but not limited to, privacy, risk management, compliance and business continuity management
- Develop and manage information security budgets and monitor them for variances
- Plan, execute and report on discrete information security projects in a timely manner and in accordance with the information security procedures and risk methodologies
- Ensure compliance with company standards, policies and procedures
What will you need to succeed in this role?
As to be expected, we are searching for someone who can bring a range of skills and experiences to enhance the team. As such, there are a few essential skills we are looking for:
- Experience in establishing and maintaining the enterprise vision, strategy, and program to ensure information assets and technologies are adequately protected
- Experience in directing employee to identify, develop, implement, and maintain processes across the enterprise to reduce information and information technology (IT) risks
- Experience in quick response to incidents, establish appropriate standards and controls, manage security technologies, and direct the establishment and implementation of policies and procedures
- Previous responsibility for information-related compliance (e.g. supervises the implementation to achieve and maintain ISO/IEC 27001 certification for an entity or a part of it)
- Previous responsibility for protecting proprietary information and assets of the company, including the data of clients and consumers
- Works with other executives to make sure the company is growing in a responsible and ethical manner.
- Firewalls
- Advanced threat intelligence Service
- Certificate Management
- Cyber Threat Intelligence Service (CTI)
- Data Loss Prevention
- Email Security
- Endpoint encryption
- End Point Security
- SIEM
- Vulnerability Management Web Security
Personal attributes which would be seen in the ideal applicant include;
- Customer service oriented
- Exceptionally strong organisational skills with a structured, methodical and pragmatic approach
- Diligent with attention to detail
- Ability to cope under pressure
- Effective communicator at all levels
- Commercially minded
- A can do attitude and willingness to go the extra mile when required
Equiom Group
For more than 40 years we have supported high net worth individuals and international corporations to nurture and fulfil their ambitions. We are a global professional services provider, working with private clients, corporate clients and funds to navigate the twists and turns to achieve their ambitions.
We are proactive and passionate. We provide exceptional service to develop deep and meaningful client relationships, providing an unrivalled breadth of bespoke end-to-end wealth protection and business support services.
We are a business which has expanded, allowing us to adapt quickly to change and invest in key areas to support our growth journey. We are looking for brilliant people to join our team to grow and develop with us.
What should you do now?
If you are interested in this role, please apply now. If you have read the above and are unsure about whether this is for you; maybe you can do most of the responsibilities, or you have some of the key skills, please get in touch for a confidential conversation about the role and we can discuss further.
Equal Opportunities
Equiom Group is committed to Diversity and Inclusion across our Global business. We welcome applicants from all interested parties, and any reference to qualifications or certifications should be read to be interchangeable with local or international qualifications and certifications. All applications will be reviewed solely on their merits. All recruitment and selection will be conducted in accordance with prevailing Employment and Equality legislation.
#J-18808-Ljbffr
Job tags
Salary
