Senior Information Security Manager

Home based role Help strengthen our Team as our Senior Information Security Manager.

Great opportunity to join our team as our Senior Information Security Manager to work with numerous clients across the public and private sectors, offering exposure to a wide variety of InfoSec projects.

You will enjoy freedom and autonomy to make your own choices on the best way to successfully complete projects, coming up with solutions to interesting problems.

Your responsibilities will include:

1. Identifying and reporting systemic weaknesses in control effectiveness.
2. Specifying requirements for cyber Health Checks to identify vulnerabilities and test cyber security controls.
3. Reporting and investigating security incidents or breaches of security policy.
4. Chairing cyber security working groups and representing cyber security on Change Advisory Board.
5. Managing compliance with organisational commitments to Codes of Connection with partners.
6. Contributing to the development of cyber security policy.
7. Maintaining the information security risk register and ensuring risk treatment plans are in place.
8. Promoting a culture of information security awareness within the organisation.
9. Planning and conducting a programme of internal and second-party audits.
10. Managing a team of Security Analysts on assigned client engagement when necessary.

What we're looking for:

1. Proven experience as an Information Security Manager or similar role.
2. Experience in information security risk management and governance.
3. Broad technical background in ICT.
4. Certified Information Security Manager (CISM) or Certified Information Systems Security Professional (CISSP).
5. Certified ISO/IEC 27001 Lead Implementer and/or Lead Auditor.
6. Strong knowledge of ISO/IEC 27001:2022 and other Cyber Security standards.
7. Ability to explain technical problems to non-technical business stakeholders.
8. Aptitude to remain up to date with information security standards and technology.
9. Good understanding of information/cyber security issues across various sectors.
10. Assertive personality with strong organisational and interpersonal skills.
11. Good technical, analytical, and communication skills (both written and verbal).
12. Strong stakeholder management.
13. Eligibility for SC Clearance.

Desired Certifications (not essential):

• ISO 22301 Lead Implementer and/or Lead Auditor.
• PCI-DSS Internal Security Assessor (PCI ISA).
• CESG Certified Professional (CCP) ITSO certified.
• ISACA Certified Information Systems Auditor (CISA).
• Pension background/industry experience.

About Capita Technology and Software Solutions (TSS) and CISO

Capita Technology and Software Solutions (TSS) is a global shared service responsible for delivering innovation and digital transformation for Capita's businesses and clients.