Job Title: IS Security Manager
Location: Remote
Salary: £45000 – £55000
What We Offer:
Salary £55,000 per annum
25 days annual leave plus bank holidays
Competitive Pension
Company bonus scheme
Remote working, all necessary equipment provided
Training and development opportunities
Flexible-working positive employer with a range of family-friendly policies
Long term career prospects in a growing company
Employee perks including a range of discounts to suit your lifestyl
First Intuition “where people count” – is a fast-growing premier provider of finance training and apprenticeships. As part of our ongoing growth and success, we are currently seeking an ambitious, enthusiastic and hands-on IS Security Manager to join the Central Information Systems team.
This is a Remote based role within the Operational pillar of Central Information Systems, reporting to and working closely with the Information Systems Director.
This critical role is responsible for the development, implementation and operation of an Information Risk and Security Strategy for the First Intuition, delivering secure and robust solutions aligned with both business and IS strategy.
Main responsibilities
Develop, apply and maintain plans and processes to manage Cyber risks appropriately and effectively, whilst complying with legal, statutory, regulatory, contractual and business compliance requirements.
Develop and maintain the security risk assessment methodology, frameworks, GRC systems and oversee security risk assessments for the business, 3rd parties and change projects / programmes.
Develop and maintain Information Security Governance, Policies and Procedures to agreed standards within First Intuition.
Develop, apply and maintain First Intuition Security Operations capabilities ensuring robust technical solutions are implemented and operated in-line with business and IT strategy.
Work with the Information Systems management team & business leaders to support the Integration Plan for Mergers, Acquisitions, Divestments.
Input into the department budget ensuring that any projects critical to the security strategy are included. In conjunction with the team, support delivery of these projects ensuring on time and on budget.
Supporting additional work as reasonably required by management from time to time. This list is not exhaustive.
Design and manage the user security education and awareness campaign across First Intuition delivered through specific online sessions, Lunch’n’Learn sessions and create a library of content delivered through our LMS platform – FI Learn.
Develop and own First Intuition’s Security Incident Management process, including the design and execution of test exercises and simulations.
Manage the process of achieving certifications of key First Intuition security accreditations.
Develop and manage a team of professionals across the Information Security function, providing security operational and compliance capabilities.
Work with and steer the Security Governance team and Data Protection Champions throughout First Intuition.
Maintain excellent working relationships with our strategic security partners.
Travel as and when required to locations within the United Kingdom.
Requirements
First Intuition is committed to fostering a diverse and inclusive workplace. We embrace individuals of all backgrounds, cultures, abilities, and experiences, and believe that diversity strengthens our team. We are dedicated to providing equal opportunities for all employees, ensuring fairness, respect, and a supportive environment for everyone.
Self-starter and someone who takes ownership.
A broad knowledge of a wide range of Information Technology systems and a deep understanding of the inherent security risks associated with these technologies.
An understanding of information security principles and best practice (e.g., ISO27001, Cyber Essentials).
Detailed experience in Microsoft security suites (Azure, Defender, Sentinel, Secure Score).
Experience in data security posture design and implementation including Data Loss Prevention (DLP), information governance and identity and access management.
Working knowledge or experience of performing and reviewing vulnerability and risk assessments and vulnerability testing.
Working knowledge or experience of EDR/XDR/MDR strategy with associated Cyber Security Incident Response planning.
Understanding CVE assessments.
The ability to present security topics to a non-technical audience and presenting the business value of security.
Maintaining relationships with the user community across the whole of First Intuition.
Creative thinker who wants to make a difference.
Certification in one or more cyber security disciplines such as SC-200, SC-300, SC-400 or AZ-500.
EC-Council CEH or CED.
Experience of working with GDPR and PECR.
Experience in securing physical and virtualised environments; servers to endpoints including hardening, patching monitoring, logging and alerting.
Awareness of Cloud Native Technologies and best practices to ensure we deliver Secure by Design.
Desirable
Certification in one or more cyber security disciplines such as SC-200, SC-300, SC-400 or AZ-500.
EC-Council CEH or CED.
Experience of working with GDPR and PECR.
Experience in securing physical and virtualised environments; servers to endpoints including hardening, patching monitoring, logging and alerting.
Awareness of Cloud Native Technologies and best practices to ensure we deliver Secure by Design.
First Intuition is committed to fostering a diverse and inclusive workplace. We embrace individuals of all backgrounds, cultures, abilities, and experiences, and believe that diversity strengthens our team. We are dedicated to providing equal opportunities for all employees, ensuring fairness, respect, and a supportive environment for everyone.
Benefits
25 days annual leave, rising to a total of 30 after 5 years (based on fulltime hours) PLUS bank holidays
Hybrid working available, equipment provided for homeworking
Flexible-working positive employer with a range of family-friendly policies
Employee Assistance Programme: 24-hour confidential access to counselling and support services
Competitive Pension
Private Medical Insurance
Company share scheme
Training and development opportunities
Long term career prospects in a growing company
Employee perks including a range of discounts to suit your lifestyle
Originally posted on Himalayas
–
Post:
Information Security Manager, IT Security Risk Manager, Security Manager, Head of Information Security, Security Program Manager, Application Security Manager
