The Vacancy
Find out if this opportunity is a good fit by reading all of the information that follows below.
The Information Security Manager is a critical role within the IT Department, tasked with defining and delivering the objectives of the CGT Catapult Information Security strategy while enhancing a security programme that addresses data compliance, security, privacy risks, and project-specific security requirements. This role is also responsible for gathering, analysing, and assessing current and future threats to data compliance, information security, and privacy, as well as maintaining and monitoring the organisation's evolving information security best practices.
The Information Security Manager will collaborate with senior managers across CGT Catapult to develop and drive the data compliance and information security agenda, ensuring it meets complex compliance, legal, and framework requirements. Acting as an empowered representative of the IT Department during IT planning initiatives, the role ensures that data compliance and security controls are integrated at the design stage of IT projects, with expectations clearly defined, understood, and agreed upon. Additionally, the Information Security Manager will play a key role in evaluating current data compliance and information security breach management processes to ensure CGT Catapult meets mandatory data breach notification obligations if required.
Key Accountabilities:
1. Work with the Enterprise and Security Architect and senior managers to build on an existing data compliance and information security program to address information security risks and compliance requirements.
2. Implement information security frameworks: Cyber Essentials to ISO27001.
3. Manage Information Security Incidents in line with best practice.
4. Participate in the preparation and management of regulatory agency and Collaborator inspections.
5. Evaluate data compliance requirements with stakeholders including response to requirement specifications from CGT Catapult internal departments.
6. Provide support and advice to stakeholders by facilitating the escalation of any data compliance issues through the appropriate routes.
7. Assist with managing and overseeing the data compliance and security aspects of the company/project IT set-up including websites that may be hosted internally or externally.
8. Liaise with potential and confirmed Collaborators and their IT support partners/employees operating within the CGT Catapult environment, securing the access and integrity of data made available to individual Collaborators.
9. Manage data compliance and information security projects, providing expert guidance on compliance matters for other IT projects.
10. Stay abreast of regulatory changes including cybersecurity developments and their impact on IT requirements, including relevant data privacy requirements.
11. Ensure audit trails, system logs, and other monitoring data sources are reviewed periodically and are in compliance with policies and audit requirements.
12. Work with the Company's Data Protection Officer to ensure that CGT Catapult meets Information Security requirements under relevant legislation and regulations and can fulfil the array of data subject rights.
13. Perform other duties as and when directed, commensurate with the role.
Experience:
1. Comprehensive IT experience, with significant experience within an information security role.
2. Recent managerial experience, particularly defining and implementing security strategy.
3. Significant experience of Data Compliance, IT support, cyber security, and service level agreements.
4. Experience within a GxP environment would be an advantage.
5. Previous experience working within an R&D interfacing environment would be beneficial.
Knowledge / Skills / Competencies:
1. Highly motivated, pragmatic and practical to support the mission of the Cell and Gene Therapy Catapult to accelerate the development of a commercial cell and gene-based therapy industry in the UK.
2. Desire to establish a high-profile career within the cell and gene sector and the personal drive to help push the sector to be a commercial success.
3. Able to evaluate complex situations and find solutions in a professional manner.
4. Working knowledge of the Data Protection Act (1998) and General Data Protection Regulations (GDPR).
5. Working knowledge of Security Architecture and potential security issues related to PaaS, IaaS, SaaS and understanding of IAM, and Data Loss Prevention in a cloud environment.
6. Knowledge of technologies such as IDS/IPS, vulnerability testing, and Firewalls.
7. Ability to manage multiple / varied tasks and prioritise workload with attention to detail.
8. Comfortable operating autonomously once goals and objectives are set.
9. Strong interpersonal and organizational skills, with the ability to successfully work both independently and effectively within a team.
10. Strong leadership capability, executing as appropriate in the areas of responsibility.
11. Excellent oral and written communication skills, including the ability to explain technology solutions to a non-technology internal client base.
12. Proven project management skills, including the ability to effectively deploy resources and manage multiple projects of diverse scopes in a cross-functional environment.
13. Proven ability to engage constructively with colleagues at all levels across different departments to deliver objectives.
14. Ability to quickly establish credibility and build rapport and trust.
15. A good team player, with strong organisational skills.
16. Stays current with developments in new technologies and platforms.
Education / Qualifications:
1. Bachelor's or Master's degree in computer science, information systems, business administration or related field; or equivalent work experience.
CGT Catapult is committed to providing an equal, diverse, and inclusive work environment where everyone's contributions are valued. We celebrate differences, empower, and inspire everyone, because when everyone is included, everyone wins. In 2024, we received bronze accreditation from Inclusive Employers.
The Company
The Cell and Gene Therapy Catapult was established as an independent centre of excellence to advance the growth of the UK cell and gene therapy industry, by bridging the gap between scientific research and full-scale commercialisation.
With more than 350 employees focusing on cell and gene therapy technologies, it works with partners in academia and industry to ensure these life-changing therapies can be developed for use in health services throughout the world. It offers leading-edge capability, technology and innovation to enable companies to take products into clinical trials and provide clinical, process development, manufacturing, regulatory, health economics and market access expertise. Its aim is to make the UK the most compelling and logical choice for UK and international partners to develop and commercialise these advanced therapies.
The Cell and Gene Therapy Catapult works with Innovate UK. For more information please visit ct.catapult.org.uk or visit http://www.gov.uk/innovate-uk.
Our Benefits
* Career Development Opportunities
* Discretionary Performance Related Bonus
* Generous Annual Leave
* Generous Salary Sacrifice Pension Contribution
* Interest Free Travel Loan
* Cycle to Work Scheme
* Life Assurance
* Electric Car Scheme
* Retail Vouchers & Discounts
* Employee Assistance Programme and Mental Health Wellbeing support
* Help With Financial Wellbeing and Planning
#J-18808-Ljbffr