Cyber Security Manager

Morgan Hunt are currently recruiting for a Cyber Security Manager on behalf of our public-sector client based in Glasgow.

Salary: £55k

The post-holder will offer guidance, leadership, and directives pertaining to the oversight, administration, and management of cybersecurity and compliance throughout the organisation's IT landscape, initiatives, and undertakings. Enabling transformation and innovation while optimising technology investments and managing value, cost, and risk in line with best practice and other relevant guidance and legislation.

Key Duties & Responsibilities:
* Supervise and regulate cybersecurity and ICT security capabilities by advocating for the implementation of applicable controls organisation-wide to ensure cost-effective risk mitigation.
* Spearhead the formulation and execution of Cyber, IT, and Information Security strategies, adhering to governmental requisites, regulations, risk management, and organizational policies.
* Oversee and scrutinise the team's efforts with a mandate for enforcing HR policies and procedures.
* Cultivate relationships with pivotal stakeholder groups to guarantee adherence to related policies and standards.
* Head the creation, assessment, and revision of policies, guidelines, standards, and procedures, acknowledging relevant information security standards and incidents.
* Scrutinise, appraise, and report on the efficacy of cybersecurity and information security recommendations.
* Evaluate the importance of security counsel from various sources and make pertinent recommendations.
* Take charge of investigations into incidents tied to malevolent, intentional attacks or failures/breaches affecting the organisation's IT infrastructure, both on-premises and cloud-hosted solutions.
* Collaborate with internal and external contacts concerning cybersecurity incidents, compliance, policy breaches, etc.
* Lead the examination of alterations in regulatory compliance requirements and industry advancements when necessary.
* Supervise the specification of requirements for ICT Health Checks to guarantee the identification of vulnerabilities and the testing of cybersecurity controls, then oversee the resultant remedial measures for the business.
* Coordinate the allocation of cybersecurity-based contracts and services with relevant counterparts.
* Spearhead regulatory compliance and accreditation processes.
* Advocate and sustain a security-conscious culture, heightening awareness of cybersecurity issues, current technologies, and emerging trends.
* Define the target architecture for cybersecurity controls in ICT solutions and devise roadmaps, business cases, and remediation plans.
* Plan and oversee the implementation of a cybersecurity and information security work program, pinpointing and assessing risk profiles and guiding the selection of appropriate security risk assessment techniques.
* Contribute to the maintenance of pertinent security risks on the corporate risk register. Integrate cybersecurity and information security risk management into program risk management.

Experience & Skills:
* Hold relevant qualifications in Cybersecurity, such as CISM, CISSP, CompTIA Security+, or be prepared to pursue recognized information security accreditation.
* Proficiency in Enterprise Architecture, particularly TOGAF.
* Familiarity with risk and regulatory frameworks such as ITIL, CobIT, ISO 27001, PCIDSS, PSN, etc.
* Experience in working with HMG and NCSC policies and the security framework.
* Familiarity with the current version of HMG Security Policy Framework (SPF).
* Knowledge of policy documents issued by the National Cyber Security Centre (NCSC).

Morgan Hunt is a multi-award-winning recruitment business for interim, contract and temporary recruitment and acts as an Employment Agency in relation to permanent vacancies. Morgan Hunt is an equal opportunities employer. Job suitability is assessed on merit in accordance with the individual's skills, qualifications and abilities to perform the relevant duties required in a particular role.