Cyber Security Manager
Critical National Infrastructure
2/3 days p/w in Portsmouth office
GBP55,000 – GBP65,000 + benefits
Permanent
Are you passionate about protecting critical national infrastructure from cyber threats? Do you have the skills and experience to manage and improve security systems and processes? Do you want to work for a leading organisation that values your contribution and offers flexible working arrangements?
If you answered yes to these questions, then I have an exciting opportunity for you!
- Using and managing various security tools and technologies to monitor, detect, and respond to security incidents and threats.
- Assessing and managing risks and implementing mitigation strategies to reduce the impact and likelihood of security breaches.
- Ensuring compliance and adherence to relevant standards and frameworks such as ISO 27001, NIST, and GDPR.
- Developing and updating security policies, procedures, and guidelines to align with best practices and business objectives.
- Identifying, prioritizing, and remediating vulnerabilities across systems and networks.
- Providing regular reports and insights on security performance and trends to senior management and relevant parties.
- Coordinating incident response activities and conducting post–incident analysis and lessons learned.
To be successful in this role, you will need:
- Technical expertise in using and managing various security tools and technologies such as Microsoft Azure, O365, Sonicwall firewalls, and Microsoft Infrastructure.
- Risk management and governance skills to assess and manage risks and implement mitigation strategies.
- Compliance and regulation knowledge to ensure adherence to relevant standards and frameworks.
- Policy development and maintenance experience to create and update security policies, procedures, and guidelines.
- Vulnerability management proficiency to identify, prioritize, and remediate vulnerabilities.
- Security awareness and training ability to develop and deliver security education programs and sessions.
- Security monitoring and reporting proficiency to implement and manage security monitoring systems and provide regular reports.
- Incident response and management skills to coordinate incident response activities and conduct post–incident analysis.
- Operational technology (OT) management experience and knowledge to manage OT security challenges and requirements (advantageous).
- Previous experience of running and managing security solutions (e.g. Cloud, Cyber, Penetration, Information Security etc.)
- Proven experience in an information security role including experience of developing Information Security policies and plans.
- Relevant certifications such as CISSP (Certified Information Systems Security Professional) or CISM (Certified Information Security Manager) (desirable)
- A good working knowledge of information security including ISO 27001 Information Systems (desirable)
- Excellent knowledge and understanding of information risk and security concepts, principles and protocols as a means of relating business needs to security protocols.
- Good understanding of system technology security testing (vulnerability scanning and penetration testing)
- A degree in Computer Science, Information Security, or a related field (or equivalent experience)
Please do not hesitate to apply if you satisfy SOME or ALL of the criteria.