Address
SalaryJob Title: Cyber Security Manager
Job Location: UK Flexible Location (Remote)
Salary: £65,000 per annum based on 35 hours per week
Contract Type: Permanent
Are you passionate about Cyber Security and eager to share your expertise with a global humanitarian organisation? Could you guide and empower our Cyber Security team towards success? Come join our team!
Embark on an exciting journey at the British Red Cross, where your mission is to safeguard data about our staff, volunteers, donors, and beneficiaries.
As the Cyber Security Manager, you'll share your expertise and empower others to safeguard our organisation, elevating our Cyber Security practices. In this dynamic role, you’ll assure the security of new services, guide efforts to tackle known issues, and champion areas for improvement. Dive into Kusto Query Language (KQL), unravelling patterns, and investigating suspicious events.
Job Location: UK Flexible Location (Remote)
Salary: £65,000 per annum based on 35 hours per week
Contract Type: Permanent
Are you passionate about Cyber Security and eager to share your expertise with a global humanitarian organisation? Could you guide and empower our Cyber Security team towards success? Come join our team!
Embark on an exciting journey at the British Red Cross, where your mission is to safeguard data about our staff, volunteers, donors, and beneficiaries.
As the Cyber Security Manager, you'll share your expertise and empower others to safeguard our organisation, elevating our Cyber Security practices. In this dynamic role, you’ll assure the security of new services, guide efforts to tackle known issues, and champion areas for improvement. Dive into Kusto Query Language (KQL), unravelling patterns, and investigating suspicious events.
Take the lead as you guide a team of in-house IT and Cyber Security experts, steering through any obstacles that come your way. You’ll manage third-party providers, including Managed Security Service Provider (MSSP), Cyber Threat Intelligence, and Extended Detection and Response (XDR) partners. You'll ensuring the Red Cross are safe and connected.
Join us in the dynamic world of safeguarding data and cyber resilience – where your skills will be the key to our success! Your expertise will ensure the future of the Red Cross and ensure we in the best possible position to support people in crisis.
Wondering about a day in the life of a Cyber Security Manager? You’ll:
- Develop and execute a cost-effective Cyber Security strategy aligned with objectives and risk tolerance, including alignment with the Digital, Data, and Technology (DDaT) directorate strategy.
- Proactively lead policy and process changes to align with business outcomes, legal requirements, and technical architecture.
- Foster a collaborative and diverse security engineering culture, assisting teams in selecting and adopting security controls, and supporting Privacy by Design / Secure by Design principles.
- Act as the primary point of contact for senior stakeholders, building strong relationships as the trusted Cyber Security expert.
- Set and manage expectations of senior management and stakeholders, providing early problem-solving and facilitating discussions on high-risk requirements.
- Manage comprehensive Cyber Security risk assessments, adapting to organizational changes, evolving threats, and trends.
What does it take to be a Cyber Security Manager?
- Strong leader with a growth mindset, adept at integrating security into strategic discussions and fostering innovation while mitigating cyber risks.
- Proficient in Sentinel KQL, automation, and Microsoft's technical security tools (Azure, Entra ID, M365 E3 – E5 Security, Microsoft Defender, Sentinel, Data Loss Prevention).
- In-depth knowledge of commercial service and software licensing agreements, including Software-as-a-Service (SaaS) agreements.
- Current expertise in Cyber Security risk management, covering attack types, detection/prevention methods (Mitre ATT&CK, OWASP, CISecurity Critical Security Controls).
- Robust understanding of IT security standards and frameworks (PCI DSS, NHS DSP Toolkit, ISO 27001, Cyber Security Essentials).
- Experience in organization-wide cyber risk assessments and compliance gap assessments against standards (PCI DSS, NHS DSP Toolkit, ISO 27001, Cyber Security Essentials), managing improvement plans
- It would be desirable, but not essential that you have one or more relevant certification, such as; Global Information Assurance Certification GIAC Security Essentials (GSEC), ISACA Certified Information Security Manager (CISM), ISC2 Certified Information Systems Security Professional (CISSP), and Payment Card Industry Data Security Standard’s Internal Security Assessor (PCI ISA).
Interested? The closing date for completed applications is 23:59hrs on Thursday the 15th of February 2024 with interviews to follow.
Please apply early, as we’ll be reviewing candidates throughout. We reserve the right to close the ad in advance of the published date.
In return for your dedication and expertise, what will you get?
- Holidays: 36 days annual leave (including bank holidays) + option to buy 5 extra days.
- Pension scheme: Up to 6% contributory pension.
- Flexible working: We do our best to accommodate your preferred work style.
- Learning & Development: Wide range of career opportunities + comprehensive learning.
- Discounts: Access to Blue Light Discount Card and employee benefits platform.
- Wellbeing Assistance: Access to mental health and wellbeing assistance.
- Team Working: Champion our mission in a collaborative team.
We are proud to participate in the disability confident scheme for roles based in the UK. During the application process, you will be asked if you wish to apply under the scheme.
At The British Red Cross, we pride ourselves on our diverse workforce, and ensuring we have an inclusive environment for all our staff and volunteers. We remain dedicated to ensuring our teams can bring their true selves to work without risk or fear of discrimination. We do this through regular data reporting, and the assistance of our internal Race and Equality Network (REEN). LGBT+ Network, our Disability and Wellness Network (DAWN), Gender Network, Carers Network and Youth Network.
