Department: IS IT
Location: Sunderland
Description
We are seeking a highly experienced and motivated Cyber Security Governance Manager to join our team. The successful candidate will be responsible for overseeing and coordinating all aspects of our European cyber security efforts, including the management of technical staff and working closely with regulators and certification bodies for audit and compliance purposes.
Key Responsibilities
* Oversee the development and implementation of comprehensive cyber security policies, standards, and procedures.
* Manage a team of technical staff, ensuring they are adequately trained, motivated, and equipped to carry out their duties effectively.
* Work closely with regulators and certification bodies to ensure our organisation meets all necessary compliance and audit requirements.
* Conduct regular risk assessments and audits to identify potential vulnerabilities and implement necessary security measures.
* Keep abreast of the latest cyber security trends and threats and ensure our organisation's security measures are up to date.
* Develop and deliver training programs to enhance staff awareness about cyber security.
* Manage incident response planning as well as the investigation of security breaches.
* Prepare and present reports to senior management on the status of the current security landscape.
* Work closely with regulatory bodies, certification organisations, and auditors to ensure compliance with relevant laws and standards (e.g., GDPR, NIST, ISO 27001, SOC 2).
* Develop and manage cybersecurity policies for third-party vendors and contractors to ensure that external entities meet organisational security requirements.
* Coordinate and support internal and external audits, working with auditors and certification bodies to facilitate the audit process and manage corrective actions.
Experience and Qualifications
* Bachelor's degree in computer science, Information Technology, or a related field. A master's degree or relevant professional certifications (such as CISSP, CISM, CRISC, CISA, ISO 2700) will be an added advantage.
* Proven experience as a Cyber Security Manager or similar role.
* Extensive experience in managing technical staff and working with regulators and certification bodies.
* Strong knowledge of cyber security technologies, best practices, and trends.
* Excellent understanding of risk management, audit, and compliance processes.
* Strong leadership and team management skills.
* Excellent communication and presentation skills.
* Ability to make sound and logical judgments.
* 5+ years in a GRC or cybersecurity role, with at least 2 years of experience in a managerial or leadership position.
* Knowledge: Strong understanding of cybersecurity frameworks, standards (e.g., NIST, ISO 27001), and compliance regulations (e.g., GDPR, HIPAA, SOC 2).
* Familiarity with risk management software, security incident management tools, and enterprise governance solutions.
AESC Benefits
* 26 days holiday plus bank holidays
* Holiday purchase / sell scheme
* Enhanced life assurance
* Enhanced pension scheme
* Enhanced maternity / paternity pay
* Dental plan
* Summer and Christmas savings club
* Flexible working *office roles
* Cycle to work scheme
* Pay based appraisal
* Employee referral scheme
* Discounted gym membership
#J-18808-Ljbffr