Cyber Security Governance Manager

Company Overview

83zero is working with a leading IT consultancy that partners with global organisations to deliver IT operations along with business advancements through the adoption of new and innovative technologies.

Our client partners with a number of international private businesses in shipping, real estate, energy, banking, and investments.

You will be joining their growing team on a hybrid basis, on-site 3 days a week in their office based in Marble Arch.

What's in it for you…

• £70,000 - £80,000 Per annum (dependent on experience)
• Hybrid working position (3 days a week on-site in Marble Arch)
• Private medical
• Company bonus
• Opportunities for professional growth and development
• Life Assurance
• Cycle to work scheme

An intro to the Information Security Governance Manage role…

You will take ownership and drive improvements to the way the business manages information and cyber security activities working closely with key stakeholders.

This role will require a self-starter who will help drive the business forward to mature the way the BAU activities are managed, monitored, and reported.

Your responsibilities will include…

• Guide the keys stakeholders to ensure sound cybersecurity decision-making can be made.
• Develop and maintain appropriate cybersecurity policies, procedures and standards and ensure they are aligned with any regulatory requirements and industry best practices.
• Establish a security risk management framework, define risk appetite and tolerance levels and conduct regular risk assessments and vulnerability scans.
• Assess and manage cybersecurity risks associated with third-party vendors and service providers. Implement the vendor risk assessment processes and ensure cybersecurity contractual requirements for cybersecurity are considered.
• Support, where appropriate, cybersecurity incidents and attend the cybersecurity operation meetings.
• Support and advise on the deployment of appropriate tools and technologies, and ensure that they align with the organisational security standards.
• Conduct regular review and assessments of cybersecurity controls and processes. Implement lessons learned to ensure continued improvement, and stay abreast of emerging threat, vulnerabilities and best practices in cybersecurity.

What you've got…

• Demonstrable understanding of cybersecurity principles, frameworks (such as ISO27001, NIST, etc.) and best practices; including knowledge of various security technologies, threat landscape, vulnerabilities and mitigation strategies.
• Familiarity with regulatory and compliance requirements (such as GDPR, HIPAA, PCI DSS, etc.).
• Proficiency in risk management and assessment methodologies.
• Proven policy, procedure and standard development in all areas of cybersecurity.
• Exceptional skills in conducting cybersecurity assessments and audits, with the ability to interpret results and present to leadership.
• Two or more of the following certifications: CISSP, CISM, CRISC, CISA, ISO27001 Lead Implementer.

Ready to Apply?

If you are reading this and are thinking 'Wow, this sounds like me!', then we want to hear from you!

So why are you still reading?!