Information Security Manager / IT Security Manager

Job Title: Information Security Manager

Location: Leeds, West Yorkshire

Salary: Competitive

The role of Information Security Manager is responsible for all aspects of information security and data protection within the Group. This includes identifying, planning, managing, implementing and monitoring the policies, procedures, processes and practices required to protect and safeguard the confidentiality, integrity and availability of information within the organisation.

Key Accountabilities:

• Working closely with internal and external stakeholders, forming and delivering an Information Security strategy that focuses on protecting Parabis (and its customers) information and data.
• Assistance with the project & programme management of the Information Security related projects.
• Working with the policy team, developing, delivering and maintaining a people focused “best practice” Information Security policy framework.
• Defining operational security standards, plans, protocols and processes.
• Deputising for the Chief Information Security Officer (CISO) and chairing the Information Security Forum (ISF) when the CISO is unavailable.**
• Joining the IT Change Advisory Board (CAB) to ensure all changes have thorough security risk assessments.
• Management of the information security risk register & risk treatment plan.
• Auditing Information Security across the business and producing gap analysis reports on a quarterly basis.

Essential Skills/Knowledge:

• A significant degree of business awareness coupled with a strong customer, service and quality orientation.
• Demonstrable experience of delivering an ISO27001 certification programme.
• Experience designing and delivering employee security awareness & compliance training.
• A good understanding of the principals of Antivirus software, Firewalls, Intrusion Detection Systems, Disk encryption, PKI, Two Factor authentication (such as SecurID), SSL, SSL VPN, RAS, Removable Drive (USB) management.
• Familiarity with standard Microsoft technologies such as Windows XP, Windows 2003, Windows 7 and Windows 2008, SQL 2000/2005, Exchange 2003/2010, Office 2000/2003/2007

Relationship Management:

• An exceptional people person, using natural flair to influence and secure buy-in from a variety of stakeholders including team members and colleagues, senior management, customers, and other departments.
• Excellent relationship and stakeholder management skills at all levels of the organisation.
• Must be able to negotiate with and influence employees, Board members, contractors and suppliers at all levels.
• Able to inspire, motivate, coach and mentor staff to build high performing teams.

Specific Role Competencies:

• Educated to degree level and/or equivalent work experience.
• One of the following certifications would be desirable:

1. GIAC Security Essentials Certification
2. GIAC Security Leadership Certification
3. ISACA Certified Information Security Manager
4. Microsoft Certified Systems Engineer: Security
5. (ISC)2 – SCCP / CISSP / ISSAP

• In addition the following would be useful:

1. ITIL v3 Security Management certification.
2. Prince 2 Foundation or Practitioner.

Please click the APPLY button to send your CV and Cover Letter for this role.

(Keywords: Information Security Manager, IT Security Manager, IT Support, Information Security,Information Management Security operations Manager, Security Operations Manager, Security and Information Manager, IT Security Manager, Security Operations Analyst, Infustructure Manager)