Job Title: IT Security Manager
Location: Bristol - Hybrid Working 3 days per week onsite
Salary: £60, - £65, + benefits
Are you an experienced IT Security Manager looking for your next challenge? If so, this could be the ideal opportunity for you. My client, a specialist retail business with an excellent reputation, is currently investing within their IT Security team. As part of this investment, they are looking to hire an IT Security Manager to head up their IT Security function.
Working closely with the Head of IT you will have responsibility for all things IT Security within the business. You will be responsible for scoping, implementing, monitoring, and maintaining IT security systems, you will be able to ensure compliance standards, strategy and reporting is carried out across all parts of the group. You will be supporting the IT team and the business by being a trusted advisor in all aspects of IT security and IT compliance. Responsible for delivery of pragmatic, high quality, secure, cost-effective security solutions.
Key responsibilities
1. Ensure IT Security meets the standards required by the business.
2. Ensure IT Security systems are secure and fit for purpose.
3. In Conjunction with the Head of Technology, set objectives, establish priorities and develop plans.
4. Prepare and present proposals and benefits cases as working documents for senior management review on a monthly ongoing basis within an annual planning horizon.
5. Implement approved proposals, managing functional input, where appropriate.
6. Scope, implement, monitor and maintain IT Security systems.
7. Support the wider IT team, and the business, by being a trusted advisor for all IT security and IT compliance matters.
8. Perform due diligence and sign-off for all IT Security and Compliance related matters.
9. IT Security patching strategy, reporting and compliance.
10. Ensure IT Security and compliance systems are developed and maintained to the highest possible level.
11. Adherence to, and liaison with Group Internal and External Audit requirements and standards.
12. Maintain external IT Security certifications as required by the business.
13. Define the IT Security strategy.
14. Implement and maintain information security policies and procedures.
15. Complete regular vulnerability scanning and required remedial actions.
16. Ownership of the phishing strategy, campaigns, communications and remedial actions.
17. Create and maintain appropriate documentation and standards.
18. Maintain third-party vendor, hardware and software relationships related to IT Security.
19. Ensure quality standards are adhered to by self and fellow members of the team.
Skills and Experience required
20. Proven background within a similar stand-alone IT Security Management or Lead role.
21. Excellent IT security knowledge. (CISM, NIST, etc)
22. Working knowledge of GDPR and PCI-DSS.
23. Hands-on approach.
24. Excellent team leadership skills (communication, prioritisation, delegation, planning, etc.)
25. Quality of work - Demonstrates a high degree of attention to detail, thoroughness and a methodical approach to work. Works at a pace that matches the requirements of the business and recognises the importance of timely completion of tasks.
26. Communication & interpersonal skills - Ability to listen and understand information. Presents information in a clear and concise manner to both technical and non-technical people. Knows appropriate way of communicating with customers, peers and line managers. Demonstrates respect for all individuals in all forms of communication. Treat people fairly and courteously regardless of background or culture
27. Initiative - Monitors and manages own time to ensure daily, and long-term objectives are met. Develops and improves procedures in agreement with line manager. Accepts additional challenges and responsibilities willingly and assists others.
28. Self-reliance. Captures cross departmental analysis and detailed feedback from the Management team for review.
29. Planning & organisation - Adapts to changes and uses resources effectively. Able to prioritise and execute competing activities and prioritise and delegate effectively.
30. Budgetary competence.
31. Demonstrable knowledge of the operational ITIL Service Management framework.
32. Experience developing solutions based on best of breed products.
33. Key vendor and/or relevant industry standard qualifications eg CISSP, CISM, Comptia Security (desirable)
For more information or to apply please send a copy of your CV to (see below)