My client requires an experienced Cyber Security Manager for a 6-month project to improve on dated Cyber infrastructure. The aim is to get my client above level 3 NIST within 6 months and provide them with a fully secure infrastructure.
Candidates must have great Cyber Tech exposure as well as having a background in delivering this project solely before.
This role is a mixture of Cyber Policy and Technical based work.
Key Responsibilities:
* The role will be responsible for creating, implementing, and measuring the success of my client's IT security posture.
* Responsible for the attainment and adherence to the required IT security standards, as set out by the Head of IT & Digital Transformation. Currently Cyber Essentials + and the NIST CSF.
* Has day-to-day responsibility for devising, planning, and coordinating any IT security related updates across all IT assets and services.
* Advise and make recommendations on suitable security controls to the Information Security Committee.
* Assess and provide recommendations on requests for deviation to advised base configurations.
* Provide a robust technology infrastructure capable of meeting the needs of Jewish Care.
* Own, agree and ensure compliance to IT Security policy, and any related policies.
* Provide early insight to external risk landscape and opportunities to improve.
* Identify risk to our infrastructure and provide recommendations to mitigate risk.
* Prepare reports for Trustees and Internal Audit & Risk Committee.
* Support in assessing the compliance of system and software procurement.
Candidates Must Have Demonstrable Commercial Experience In:
* IT Audit and benchmarking (NIST or ISO27001).
* Experience leading an organization through a significant cyber security improvement programme, both people (Training) and process (Technical tools).
* Lead and maintained an IT environment through industry accreditation to CE+.
* Proven ability to engage and manage senior stakeholders.
* Excellent written and oral communication and presentation skills.
* Relevant IT Security experience in social care organization.
* Creating, maintaining and testing IT BCP and DR plans.
* IT Security Frameworks (NIST or ISO27001).
* Control and securing high value or high-risk data such as PII medical data.
* Meraki Networking.
* Sophos.
* KnowB4 or Cyber security training platform management.
* Mimecast.
* Azure and Azure VPN.
* MS InTune.
* Qualys or other device monitoring and patch management platform.
* PRTG Network Monitoring.
#J-18808-Ljbffr