IT & Security Manager (Cyber, ISO 27001:13, NIST, PCI-DSS)

Information Technology & Security Manager

Hybrid working options (offices are in Warwickshire and offer very impressive premises/facilities)

The starting salary is excellent and also comes with a 25% achievable bonus and superb corporate benefits including private healthcare and excellent pension - see enclosed

An accomplished UK based Information Technology & Security Manager is required to join our clients thriving Data Protection and Information Security (DISC) team in the West Midlands.

This is a superb full time opportunity to join a team of experts with an award-winning culture and excellent benefits. You'll be leading a team of 2nd line risk experts who provide technical information security and technology advice to the business to ensure they are resilient in line with the Group's risk appetite and in line with industry standards & regulations.

You'll play a key part leading the management and mitigation of information security and technology risks across the organisation by developing risk management strategies and controls.

You'll focus on information security and technology which will include IT Data Centre architecture, shadow IT, Cloud & AI computing in terms of managing risks in our change portfolio and supply chain.

You'll also be managing and using the enterprise-wide operation of our Governance, Risk and Compliance (GRC) tool, providing technical input into our training programmes and communications and defining policies/risk frameworks.

This is a varied position requiring agility as you will often need to react to emerging threats and regulatory changes.

The successful candidate will ideally have the following:

• Expert experience of IRM (Information Risk Management) within a 2nd line Cyber security assurance function
• Expert understanding of cyber security risk frameworks and risk reporting
• Expert understanding of control principles and practices and familiarity with the ISF Standard of Good Practice, ISO 27001:13, NIST and other security standards including PCI-DSS
• Expert understanding of control principles and practices and familiarity with the IT Standard of Good Practice, COBIT/ITIL
• User and manager level knowledge of GRC technologies and associated reporting modules
• Excellent written, oral and presentation and influencing skills to describe conclusions and recommend solutions
• Ability to apply and explain security requirements in a business and a systems context
• Experience in the formulation of and participation in change control processes, impact analysis and incident response programmes
• Recognised Information Security certification eg CISSP, CISM, CRISC to support practitioner experience; as essential
• Degree or equivalent appropriate professional qualification
• IT qualification eg CRISC, COBIT or Data Protection qualification eg CIPP, CIPM, CIPT, ISEB certificate; would be desired but not essential

When you join the team, you can expect a supportive culture and an attractive range of rewards and benefits including:

• A very achievable 25% annual bonus
• Contributory pension scheme, up to 20%, including your 8% contribution
• 25 days annual leave + bank holidays + buy/sell/save holiday trading scheme
• A Family Friendly policy that helps you balance your work and family responsibilities
• Access to savings at High Street brands, travel and supermarkets
• £20 contribution to a monthly gym membership
• Health and wellbeing plan - cashback for dentist, opticians, physio and more
• Access to voluntary benefits, including health assessments, private medical insurance and dental insurance
• Employee Volunteering - volunteer in the community for one day each year
• Unlimited access to Refer a Friend £500 bonus scheme
• Life Assurance cover of 4 x salary
• Employee discounts of 15% on a range of policies

If you have experience in the above areas and would like to know more - please contact Jackie Dean at Jumar for an informal discussion.

Candidates must be UK based and have the right to work in the UK without any restrictions.