Information Security Manager – Plymouth hybrid - £45,000 - £50,000 + Excellent benefits
Locke & McCloud are on the search for an experienced Information Security Lead to join our client, one of the UK’s leading research organizations. As the Information Security Lead, you will be responsible for establishing and maintaining a robust and effective information security program. You will play a crucial role in protecting our clients sensitive data and ensuring compliance with industry standards, regulations, and best practices. Your expertise in ISO 27001, incident response, and cyber security roadmap/strategy management will be vital in this role.
Develop, implement, and maintain an information security program that aligns with industry standards, best practices, and regulatory requirements, with a strong focus on ISO 27001.
Establish and oversee incident response procedures to promptly identify, assess, and respond to security incidents. Lead investigations, coordinate remediation efforts, and document lessons learned for continuous improvement.
Develop and execute a comprehensive cyber security roadmap and strategy that aligns with goals and objectives. Identify emerging threats and trends, and propose proactive security measures to mitigate risks.
Compliance and Risk Management: Monitor and ensure compliance with relevant regulations, standards, and frameworks. Conduct risk assessments, vulnerability assessments, and security audits to identify and address potential security weaknesses.
Security Incident Monitoring and Analysis: Monitor security systems, logs, and alerts to identify potential security incidents or breaches. Perform thorough analysis of security events, conduct forensic investigations, and provide recommendations for mitigation and prevention.
To be considered for this role, you should have:
Proven experience in information security management, with a focus on ISO 27001, incident response, and cyber security roadmap/strategy management.
In-depth knowledge of information security principles, best practices, and frameworks (ISO 27001, NIST, etc.) along with a strong understanding of regulatory requirements.
Experience in developing and implementing incident response plans, managing security incidents, and conducting post-incident analysis.
Demonstrated ability to develop and execute comprehensive cyber security roadmaps and strategies, aligning them with organizational objectives.
Strong understanding of risk management methodologies and experience in conducting risk assessments and vulnerability assessments.
Familiarity with security tools, technologies, and industry trends.
Ability to stay updated with the evolving threat landscape and emerging security technologies.
Our client offers a great benefits package including 37 days of annual leave, health care, pension plan, flexible working, guaranteed career progression plans year on year, buy and sell schemes, medical assistance, and more!
If this role is of interest, please apply to this role.