Job description
A well known university in London is seeking to recruit an Information Security Manager for an initial 3 month contract (high likelihood of an extension), 2 days ideally on site per week in London, to start ASAP. There is possibility that the role can also be fully remote also if not based close to London/you need to work fully remotely.
We are seeking an Information Security Manager who has experience of the following:
1. Responsible for data assurance; developing and enforcing policy to ensure all data is protected as defined in all its formats
2. Lead on the development, implementation and support of a University wide Information Security strategic plan, including developing and management of an Information Security Incident Response Plan.
3. Data Protection; establish and build on working relationships with key stakeholders across the University, promoting and ensuring compliance with data retention and deletion policies
4. Responsible for compiling and cascading routine performance reports to the senior management team and key stakeholders within the University; to help measure and assess the University's security posture
5. Responsible for tracking and managing both internal and external Information Security audits and risk assessments
6. Own and maintain the partnership between the University and regulatory bodies, such as the NCSC, JISC, UCISA and the local WARP (ISfL)
7. Act as a primary point of contact between the University and regulatory bodies, by tracking and sharing relevant Information Security Updates/Information Feeds released for the University's attention.
8. Track and monitor security events with the potential to impact the organization
9. Horizon scanning; keeping abreast of the evolving cyber threat landscape, tracking/highlighting new threats, reviewing emerging technologies and protective measures
10. Own the relationship with the public, external clients and business partners on all matters concerning Information Security
11. Act as a lead advisory on Information Assurance with Technical Teams
12. Input and act as a lead advisory to the Project Management Delivery framework to ensure planned workstreams comply with Information Security Standards
13. Required member of the Change Approval Board (CAB) ensuring planned changes are compliant with defined Information Security guidelines to help mitigate risk to critical infrastructure
14. Support and advise in all matters relating to Information Security and assist with any compliance and regulatory submissions as appropriate
Qualifications and Knowledge:
* Relevant degree or Professional qualification (CISSP / CISM)
* Knowledge and understanding of sector, national and cyber challenges
* Substantial vocational and management experience
Experience:
* Practical experience of meeting statutory and regulatory information security and data protection compliance requirements
* Experience of presenting complex data in a readily actionable format, across all institutional levels
* Experience of developing and implementing security policies and procedures
* Significant experience of investigating and responding to information / cyber security incidents
If interested, please apply today.