A multinational Software and Services firm is looking for an accomplished Information Security Manager to join its team. Please note the firm embraces flexibility so you will be able to work from home 2-3 days per week.
In order to be suitable for this role you must be an accomplished Information Security Manager with an expert understanding of ISO 27001 standards. You will oversee the Governance, Risk and Compliance (GRC) framework, ensuring robust standards are met across information security, physical security, crisis management, privacy and regulatory compliance. You will enhance business resilience and reduce risk exposure by ensuring robust policies, procedures, and controls are in place. You will act as the guardian of the firm’s regulatory and ethical obligations, ensuring that all data governance and InfoSec laws and regulations are adhered to.
You will act as the Lead Implementer for the ISO 27001 Information Security Management System (ISMS), driving the process toward successful accreditation and maintaining the standard post-certification. You will also lead the implementation and maintenance of the Digital Operational Resilience Act (DORA) compliance framework, ensuring the organisation meets requirements for risk management, incident reporting and operational resilience.
It is expected that you will be a certified security professional (CISSP, CISM, CISA), while previous experience working to ISO 27001 standards is essential. Commercial experience of delivering DORA compliance is preferred. This is an excellent opportunity for a proven Information Security Manager to join a highly successful company that offers an excellent range of benefits.