Home
Newcastle Upon Tyne
Ict security manager
Information Security Manager

Information Security Manager

Jackson Hogg

Posted 10 days ago, valid for 12 days

Newcastle Upon Tyne, Northumberland NE19 2BG, England

£60,000 - £72,000 per annum

Full Time

In order to submit this application, a Reed account will be created for you. As such, in addition to applying for this job, you will be signed up to all Reed’s services as part of the process. By submitting this application, you agree to Reed’s Terms and Conditions and acknowledge that your personal data will be transferred to Reed and processed by them in accordance with their Privacy Policy.

Sonic Summary

The Information Security Manager (ISM) is responsible for ensuring compliance with ISO27001, Cyber Essentials, and GDPR while managing a continuous information security risk assessment program.
Key responsibilities include advising on information security strategies, managing the ISO27001 ISMS program, and overseeing security audits and remediation actions.
The ISM will collaborate with the IT team to assess the security implications of software and hardware changes and contribute to the firm's incident response plans.
Candidates should possess strong leadership skills, in-depth knowledge of data protection legislation, and expertise in information and cyber security controls, particularly ISO27001 and Cyber Essentials Plus.
Industry certifications such as CISSP or CISM are highly desirable, and the role typically requires a salary range of $90,000 to $120,000 with a minimum of 5 years of relevant experience.

The Information Security Manager (ISM) will be accountable for overseeing the compliance with ISO27001, Cyber Essentials, and GDPR, as well as conducting a continuous information security risk assessment program. The ISM will also take the lead on initiating and managing information governance initiatives.

the ISM will maintain an ongoing partnership with the IT team, offering advice and consultation on the information security implications of any software and hardware implementations, changes, and upgrades. The ISM will also contribute to the drafting and implementation of information security policies, monitor compliance, participate in assessing cyber security risks and mitigation efforts, and lend support to the firm's cyber security and information security incident response plans.

Key responsibilities:

Advising and assisting the firm on all aspects of the development and implementation of information security strategies and initiatives, including the selection and implementation of security technologies.
Managing all aspects of the firm's ISO27001 ISMS programme, including chairing the Information Security Committee.
Aligning information security and data protection policies with business operations and strategies, ensuring compliance with ISO27001 and applicable legal and regulatory requirements.
Managing security audits (internal, external and client driven), ensuring effective and timely remediation actions and risk mitigation.
Advising key stakeholders on the implementation of new processes and modification of existing processes from an information security/ privacy by design perspective.
Development of its BC/DR programme to ensure robust information and data security is maintained.

What you’ll bring:

Strong leadership in driving security initiatives across all departments.
In-depth knowledge of data protection legislation.
Expertise in information and cyber security controls, particularly ISO27001 and Cyber Essentials Plus, and comprehension of technical IT concepts.
Industry certifications such as CISSP or CISM are highly desirable.

Apply now in a few quick clicks

Information Security Manager

Information Security Manager

Cyber Security Engineer

Trainee Cyber Security