Information Security Manager - BCM, ISO 27001, Policy Standards

Morgan McKinley
£50k - £65k pa
19 Oct 2016
17 Nov 2016
Contract Type
Information Security Manager - BCM, ISO 27001, Policy Standards

I have an exciting opportunity for an Information Security Manager, to play a key role within a global end user client. As the Information Security Manager, you will be responsible for the overall Information Security compliance aligned to IS policy standards and relevant legislation's.

My client is looking for an all round Information Security practitioner, with in-depth experience in managing ISO standards, with a particular focus on business continuity management (including BC strategy) and the Data Protection Act.

Key Responsibilities:

* Day to day operations to co-ordinate information security work streams across the business, while maintaining ISO 27001 certified ISMS.
* You will then advise senior management on the prioritisation of Information Security risks according to the above.
* Define, implement and maintain security policy standards and guidelines, in line with the organisations regulatory requirements.
* Developing and maintaining information security policies and accompanying standards, procedures and guidance including the firms Information Security Management System (ISMS).
* Carrying out risk assessments to identify where information security controls are not aligned.
* Ensuring the internal audit of compliance with ISO 27001 and actions to correct exposures is implemented.
* Promoting information security awareness by developing and implementing training and awareness programmes.
* Investigating suspected and actual security incidents.
* Keeping up to date with the latest Information Security developments, identifying significant trends in business continuity and the Data Protection Act.
* Providing input to the wider development of the information governance strategy.
* Driving and developing Business Continuity plans, delivery and documentation.
* Coordinating the Business Continuity testing program and participating in the various test scenarios.

Key Accountabilities:

* Experienced Information Security Manager Specialist (5+ Years) with an established background in information Security, Data Protection Act and Business Continuity Management.
* Strong experience of managing ISO 27001, including facilitating external audits for certification.
* In-depth understanding of Business Continuity (Business Continuity Management and strategy)
* An understanding of the Data Protection Act 1998 and the impacts of the General Data Protection Regulation.
* Experience in the delivery and implementation of compliance and audit framework
* Ability to research, analyse, interpret and communicate developments effectively and apply them to the management of information security risks of the firm.
* Understanding of the importance of information security at a business level.
* Excellent stakeholder management and engagement.
* Excellent communication skills both verbal and written.
* Understanding of how information security strategy aligns with business and digital technology transformation strategies.

Cyber Security | Information Security | Risk | Policy Standards | Compliance | Legislation | ISO | ISO 27001 | Business Continuity | Business Continuity Management | BCM | Data Protection Act | DPA | General Data Protection Regulation | GDPR | Governance Strategy | Internal Audit | Security Awareness

Morgan McKinley is acting as an Employment Agency in relation to this vacancy.

Please note that any references to salary or pay rates in this advertisement and in the salary refinement section are indicative only and should only be used as a guide.