IT Security Manager
Manchester, England, United Kingdom
Boohoo Group
Shop boohoo's range of women's and men's clothing for the latest fashion pieces you need to be adding-to-basket, with 100s of new styles landing every day!Your role
To provide leadership and management of all aspects of Security, InfoSec and Cybersecurity.
The team
We started out as one brand with only three team members in 2006, today we are now made up of 13 amazing brands and counting, we have offices all over the world and we've grown to a 6,000+ strong team we call our boohoo family - and we don’t plan on stopping yet. We have big ambitions, huge potential and a clear strategy to continually evolve and grow the business. It’s a seriously exciting time to join us and influence the next chapter of our success.
In Tech, we’re proud to support every brand and every function. We’re a digital-first company that is totally cloud-native. We embrace change and future-proof the business, delivering critical customer-facing and internal stakeholder facing systems. Everything from colleague tech to front-end websites and apps, buying and merchandising tooling and all that’s in-between, we take care of it. Our ideas support and drive the Group’s agenda.
What you'll be doing
- Implementing security strategies and policies, including managing relationships with external organisations.
- Manage and update business continuity and disaster recovery plans as well as coordinate disaster recovery and business continuity testing for Technology
- Maintaining the Information Security and Cyber strategy.
- Undertake threat and vulnerability assessments of applications and infrastructure components across the company
- Advising senior management on specialised areas of expertise.
- Ensuring security controls are in line with business risk.
- Communicating with business managers and staff to advise, influence and determine operational business needs.
- Monitoring external developments through links with professional associations, industry and academia.
- Identifying and promoting appropriate risk management activities and security assessments.
- Arrange the selection, testing, deployment, and maintenance of security hardware and software products as well as third party outsourcing arrangements.
- Review business plans to ensure there is an adequate focus on security.
Working with us
To succeed here, you have to love working at pace. It’s relentless, but we love it. Change is a certainty – you need to adapt and be agile. We want you to challenge the status quo, innovate and be open to trying new things. We’re always pushing boundaries. We empower our people, giving them freedom and autonomy to learn and grow in their roles. We’re passionate, agile, creative and one team.
More about you
- Likely to have degree level qualification in Information Security
- Outstanding client relationship management ability, with exceptional oral and written communication skills.
- Strong business relation skills
- Thorough understanding and direct experience of PCI Data Security Standards. The role will be responsible for ensuring the company's infrastructure meets the standards for PCI.
- Knowledge and experience in DPA
- Knowledge and experience in ISO/IEC 27001 / 27002
- Information Security Qualification (CISSP, CISM, etc)
- Proven leadership able coordinate the efforts of others in the delivery of IT Services to the business and engender a spirit of teamwork and cooperation amongst colleagues.
- Negotiation and influencing skills.
- Cost and budget management skills.
- An attitude that embraces change.
Why join us
We’ve set our sights on dominating the global e-commerce fashion market, and because we’re 13 brands (and counting), there are plenty of opportunities to grow your career. Our mission is to create a workplace where everyone is respected, their individual differences are valued, and they can be themselves at work without exception.
Find out about us more here https://careers.boohoogroup.com/
Tags: Agile CISM CISSP Cloud E-commerce Monitoring Risk management Security assessment Strategy
Perks/benefits: Flex vacation Health care
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Product Security Engineer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Security Specialist jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open Information System Security Officer (ISSO) jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open IAM-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open APIs-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open CI/CD-related jobs
- Open DevSecOps-related jobs