ISMS Manager / IT Security Manager / Cyber Security Manager / Cyber and IT Security Manager (Hands-on/Greenfield Position)
6 Months Contract very likely to extend or possible to become permanent. Currently remote working, will be 2-3 days per week based in Central London after office reopens. Outside IR35.
Our client is a leading retail brand based in Europe with locations globally. The role is UK based reporting into the North America HQ. You will:
●Leads the cybersecurity planning and information technology governance initiatives across the orgs EMEA environment, providing assurance that cybersecurity polices, standards and practices are met;
●Manages and executes cybersecurity risk assessments for both internal environment and third party vendors;
●Evaluates and responds to global cybersecurity threats in relation to local, regional systems
●Be the Subject Matter Expert on all areas of Data Protection, Governance, GDPR, risk management and compliance;
●Identifying Security and Data Protection related risks and provide proportionate mitigation options and advice to business risk owners for decision making;
●Acting as in region security lead and providing leadership for cyber and information security management including strategy, security architecture and security operation;
●Implementing and maintaining the strategy and programme to ensure critical information assets are identified and adequately protected;
●Manage the timely Security Incident Response, including evaluating and reporting on business impacts of security incident trends;
●Works closely with both the technology and business team to ensure regulatory data security and privacy compliance controls standards are enforced and upheld;
●Work with global cybersecurity team based out of North America to help drive strategy, coordinate improvement efforts, and monitor process improvement effectiveness
●5+ years of Security Management experience
●Experience with vulnerability management, risk management frameworks and associated business workflows
●Experience with penetration testing methodologies, tools and data privacy requirements
●A strong bias for action - a problem solver with leadership skills
●Experience with scripting languages (e.g. Python, Bash, Basic SQL)
●The ability to influence and get buy-in across the organization and at all levels
●To be open to real-time, constructive feedback in a high energy and evolving environment
●Ideally previous experience in establishing and implementing cyber and information security capabilities.
●To be self-motivated and have a desire to learn quickly, multi-task, and work independently with understanding reporting team is in North America
●Excellent written and verbal communication skills are essential
●Experience with industry frameworks in Information & Cyber Security and BCM;
●Relevant industry certifications (e.g. OSCP, CISSP, CEH)
Initially 6 months full time contract, very likely to extend or possible to become permanent. Offer £500 to £700 per day depending on experience and professional IT security certificates. Contract is outside IR35.
Outside Spy discovers all the Outside IR35 IT contract opportunities for members.