National AI Awards 2025Discover AI's trailblazers! Join us to celebrate innovation and nominate industry leaders.

Nominate & Attend

Cybersecurity & Compliance Manager

ZipRecruiter
Dudley
1 week ago
Create job alert

Job Description
ABOUT TOSCA
Tosca is a global leader in reusable packaging and pooling solutions that service the supply chain end to end. Re-use is the key word as Tosca facilitates moving away from single use packaging towards a circular model of reusable packaging with its robust portfolio of plastic containers, pallets, bins, crates and more. We focus on optimizing the flow of perishables, eliminating waste at every turn – product, packaging, labor and transportation waste. Our reusable plastic products improve the quality of product delivered, create more efficient supply chains, and are more sustainable than single-use packaging.
To strengthen our IT-department at our office in Dudley (UK), we are currently recruiting a driven Cybersecurity & Compliance Manager.
Position purpose
The Cybersecurity & Compliance Manager will lead Tosca’s efforts to ensure adherence to NIST CFS 2.0, ISO 27001, and other standards. This role focuses on developing security protocols, maintaining documentation, conducting risk assessments, and ensuring regulatory compliance. Responsibilities include managing security infrastructure, incident response, and promoting cybersecurity awareness. The position requires collaboration with Global IT, cross-functional teams, and third-party partners. Key qualifications include experience in cybersecurity and compliance, strong knowledge of NIST and ISO standards, risk management expertise, and effective communication skills.
This is a full-time role based in Dudley, UK, with travel up to 30% of the time.
Responsibilities
Implement security protocols and manage information security programs
Report performance, exceptions, and outages to all audiences transparently.
Align disaster recovery with business continuity plans.
Ensure compliance with ISO27001, NIST CFS 2.0, and maintain ISMS.
Identify risks, develop a comprehensive security plan.
Test cyber-attacks regularly to address vulnerabilities.
Monitor security trends, adapt strategies.
Oversee incident monitoring, detection, response via SOC and MSSPs.
Manage security tools like SIEM and endpoint protection.
Lead incident response and post-incident analysis.
Enforce policies for data privacy (GDPR & NIST).
Conduct regular security audits.
Manage vendor relationships and negotiate contracts.
Report service performance to stakeholders.
Coordinate with other Tosca functions for effective implementation.
Other relevant responsibilities as required.
Requirements, Experience & Education
Bachelor's degree in Computer Science, Information Technology, Information Security, or a related field; a Master's degree is .
At least 7-10 years of experience in information security, specifically within security operations, with proven experience in a leadership or management role.
Relevant certifications such as CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), or CISA (Certified Information Systems Auditor) are highly desirable.
Strong knowledge of security frameworks (e.g., ISO 27001, COBIT), security technologies, tools, and best practices across EU, UK, and USA
Proficiency in risk management processes, vulnerability assessments, and incident response strategies.
Current technical and hands-on experience with security tools and technologies, including Rapid7, Rubrik, Sentinel, and endpoint protection solutions like Microsoft Defender.
Excellent analytical, problem-solving, and decision-making skills, with the ability to conduct post-incident analysis and implement corrective actions.
Strong communication and interpersonal skills, capable of working effectively with diverse teams and stakeholders.
Ability to stay current with security trends, emerging threats, and best practices in the cybersecurity landscape.
Experience of manufacturing and/or supply chain industry is .
Able to operate in a multinational corporation with several locations.
Competencies
You have expertise within

Customer/Relationship

Management.
You have excellent communication skills. You excel in conveying ideas clearly and effectively.
You possess specialized knowledge and skills in your field.
You have a collaborative spirit. You thrive in teamwork and enjoy working with others.
You can analyze situations and make informed decisions
You think ahead and plan for long-term success.
Our Offer
You will have a permanent contract with a competitive remuneration package in line with your knowledge and experience.
We continuously invest in your personal and professional development through our training & coaching programs.
You will join a dynamic and fast growing company that is part of a strong international group. We take pride in our green service and encourage our employees to participate in our growth and help us co-define the path to success. You will work in a fun environment with a supportive team that cares about each other and encourages collaboration at all levels.
Interested?
We cultivate a tight-knit team of smart people who care about their work and their colleagues. We believe this is a really exciting opportunity for someone who is up for a fast-paced challenge and is eager to become an integral member of our team.
Send us your CV and your letter of motivation in English. We’re looking forward to meeting you!
We value and equal opportunity. Applicants are welcomed on the basis of their individual merits as we do not discriminate on the grounds of , , , or racial , or belief, or . With both customers and employees around the world, we are committed to ensuring our team reflects the unique communities around us.
External recruitment services/agencies will not be used for this position.

#J-18808-Ljbffr

Related Jobs

View all jobs

Cybersecurity & Compliance Manager

Cybersecurity & Compliance Manager

Cybersecurity & Compliance Manager

Information Security Compliance Manager and Data Protection Officer (DPO)

Automotive Project Manager - Cyber Security Engineer

Automotive Project Manager - Cyber Security Engineer

National AI Awards 2025

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

How to Present Cyber Security Solutions to Non-Technical Audiences: A Public Speaking Guide for Job Seekers

Cyber security is no longer just an IT issue—it’s a board-level priority. Whether you’re applying for a role in penetration testing, security operations, risk management, or compliance, your ability to clearly explain cyber threats and solutions to non-technical stakeholders is vital. This guide will help cyber security job seekers develop one of the most in-demand soft skills in the industry: public speaking. You’ll learn how to simplify complex concepts, structure effective presentations, use storytelling and analogies, and handle common stakeholder questions with confidence.

Cyber Security Jobs Employer Hotlist 2025: 50 UK Companies Actively Hiring Right Now

Bookmark this guide—refreshed every quarter—so you always know who’s really expanding their cyber security teams. Ransomware payouts broke records in 2024, the UK’s new Cyber Security Bill imposed mandatory breach disclosure, and the National Cyber Force’s move to Samlesbury has super‑charged the northern skills market. Result? Demand for security architects, SOC analysts, penetration testers, cloud‑security engineers, threat hunters & GRC specialists is at an all‑time high in 2025. Below you’ll find 50 organisations that have posted UK‑based cyber security vacancies or announced head‑count growth during the past eight weeks. They’re organised into five quick‑scan categories. For every employer you’ll see: Main UK hub Example live or recent vacancy Why it’s worth a look (tech stack, culture, mission) Search any company on CyberSecurityJobs.tech to view current ads, or set a free alert so fresh openings land straight in your inbox.

Return-to-Work Pathways: Relaunch Your Cyber Security Career with Returnships, Flexible & Hybrid Roles

Re-entering the workforce after a career break can feel especially challenging in a fast-moving field like cyber security. Whether you stepped away for parenting, caregiving or another life chapter, the UK’s cyber security sector now offers a range of return-to-work pathways—from structured returnships to flexible and hybrid roles. These programmes value the transferable skills and resilience you’ve developed during your break, pairing you with mentorship, upskilling opportunities and supportive networks to ease your transition back into cyber security. In this article, tailored for parents and carers, you’ll discover how to: Understand the growing demand for cyber security talent in the UK Translate your organisational, communication and problem-solving skills into cyber security roles Tackle common re-entry challenges with practical solutions Refresh your technical knowledge through targeted learning Access returnship and re-entry programmes specific to cyber security Find roles that accommodate family commitments—whether hybrid, flexible or full-time Balance your career relaunch with caring responsibilities Master applications, interviews and networking in cyber security Draw inspiration from real returner success stories Whether you aim to return as an analyst, penetration tester, security engineer or compliance specialist, this guide will equip you with the steps and resources to reignite your cyber security career.