Information Security Manager
Oxford, GB
FORSEVEN
Our vision is to reimagine the way we manufacture, own and connect with electric vehicles. By doing so, we will build for a better, circular future and lighten our impact on the planet.Description
Reporting to our Head of IT, you will be responsible for continuing the enhancement and implementation of information security and data processing policies and standards across the organisation and in particular, auditing and maintaining ISO27001 processes and accreditation.
Main Responsibilities
As an Information Security Manager your day to day remit includes:
• Acting as the central point of contact within Forseven with regards to information security
• Supporting and managing the Info Sec team
• Providing input into relevant oversight committees of the organisation and senior management
• Supporting the work of the Business Continuity Forum as required
• Ensuring continued compliance against BS ISO/IEC 27001certification for all Forseven locations, including planning and coordinating regular external surveillance and re-certification audits;
• Planning and implementing extensions to the scope of this and other certification(s) where Forseven changes its scope of operations.
• Managing the client audit process and progressing and closing external audit non-conformities.
• Monitoring and managing the day to day Information security management system (ISMS).
• Plan, manage and undertake internal and third-party audits on IT governance, information security and controls.
• Liaising with IT as necessary including providing input into change and transformation activities as required
The Ideal Candidate
You will be able to demonstrate a supportive, flexible and driven ethos and will have accumulated the following experience and skills:
• Proven experience of having managed an Information security management system (ISMS) and maintaining ISO27001 certification in a multi-site operation.
• Solid understanding of IT and experience in contributing to IT governance, controls and best practice processes.
• Considerable experience in undertaking a range of internal and third-party audits around Information security, data protection and IT governance and controls.
• Experience in developing physical security best practice processes and controls.
• Good understanding of the Data Protection Act and EU GDPR.
• Very good understanding of the principles of risk assessment and risk treatment, including operational risk as well as compliance monitoring and reporting.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits Compliance GDPR Governance ISMS ISO 27001 Monitoring Risk assessment Surveillance
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open IAM-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs