Information Security Manager

Information Security Manager

Location: Central London

Salary: £50k - £70k + Benefits Package

Office Based

A leading foreign bank are seeking an Information Security Manager to lead their information security program and initiatives.

Youll be responsible for developing and implementing security policies, managing security controls, and ensuring compliance with regulatory requirements.

The Role:

Working closely with third party providers you will be responsible for ensuring the day-to-day.

IT security suppliers perform to expectations.

You will take part in ongoing and upcoming improvement projects, working through the implications within hardware and software changes and upgrades, cyber security risk analysis and information security policies.

You will lead in the incident response to any information security breach, working closely with the rest of the IT Team, as well as risk and compliance functions.

Responsibilities

* Responsible for overseeing the Bank's information security program.
* Oversight and challenge of the Bank's IS safeguarding (the confidentiality, integrity, and availability of sensitive data and information).
* Policy Development: Create and enforce information security policies, standards, and procedures in alignment with industry best practices and regulatory requirements.
* Risk Management: Identify and assess potential security risks, conduct regular risk assessments, and develop mitigation strategies to protect the organisations assets.
* Security Governance: Establish and maintain a robust security governance framework, ensuring compliance with relevant laws, regulations, and internal policies.
* Security Awareness and Training: Develop and deliver security awareness programs for employees, fostering a security-conscious culture and ensuring staff are well-informed about security best practices.
* Incident Response and Management: Lead the development and implementation of an incident response plan, ensuring timely and effective responses to security incidents and breaches.
* Security Architecture: Collaborate with IT teams to design and implement a secure technology infrastructure, including network security, access controls, and encryption.
* Security Incident Reporting: Report security incidents to senior management, provide post-incident analysis, and recommend improvements to prevent future occurrences.
* Vendor Management: Assess and manage security risks associated with third-party vendors, ensuring they adhere to the organisations security standards.* Security Audits and Assessments: Conduct regular security audits, vulnerability assessments, and penetration testing to identify and address potential weaknesses in the security posture.
* Compliance Monitoring: Monitor and ensure compliance with applicable security standards, regulations, and certifications (e.g., ISO 27001, GDPR, HIPAA).





Required Skills:

* Application Security, Information Systems, Information Technology, Incident Management.


What we are looking for:

* A team player with experience of IS oversight in a second line role in a regulated financial institution.
* Proven experience in information security management, risk management, and security architecture.
* Bachelors or Masters degree in Information Security, Cybersecurity, or a related field.
* Professional certifications such as CISSP, CISM, or CRISC are highly desirable.


* Staff management experience and proven team development skills.
* Excellent communication and leadership skills, with the ability to collaborate effectively across departments.
* Experience with security tools and technologies.
* Practical experience of implementing, maintaining and managing information and cyber security frameworks
* Analytical mindset and problem-solving skills to address complex security challenges.
* Ability to manage time and priorities appropriately


Important Information: We endeavour to process your personal data in a fair and transparent manner.

In applying for this role, Additional Resources will be acting in your best interest and may contact you in relation to the role, either by email, phone or text message.

For more information see our Privacy Policy on our website.

It is important you are aware of your individual rights and the provisions the company has put in place to protect your data.

If you would like further information on the policy or GDPR please contact us.

Additional Resources Ltd is an Employment Business and an Employment Agency as defined within The Conduct of Employment Agencies & Employment Businesses Regulations 2003.

Keywords: Information Security Manager, Information security Analyst, Information Security, Information security Consultant, GRC, banking, IT


  • Location: Central London, England
  • Salary: £50000 - £70000 Per Annum
  • Type: Permanent
  • Recruiter: Additional Resources Ltd.
  • Posted: 21-Mar-2024
  • Posted on: careers4a.com