Description

Key Responsibilities

• Develop and implement an information security strategy aligned with business objectives, including risk assessment, compliance, and disaster recovery plans.
• Establish and enforce security policies, procedures, and roles while maintaining the Business As Usual schedule and audit processes.
• Lead incident response, manage breaches, and ensure compliance with laws, regulations, and industry standards.
• Collaborate with teams to facilitate risk management, application security, and effective SDLC practices.
• Report security program status to senior leadership and promote organization-wide security awareness and training.
• Support sales in tenders, manage supplier compliance, and oversee asset and capacity management.
• Conduct analytics, reporting, and penetration testing, and coordinate external or in-house audits.

Skills, Knowledge and Expertise

• Experience in an information security role.
• Good knowledge of information security management frameworks (e.g., ISO/IEC 27001, NIST, PCI-DSS, Cyber Essentials).
• Excellent communication and interpersonal skills.
• Ability to manage multiple projects and work in a fast-paced environment.

Benefits

• Working for an organisation where people and culture genuinely matter.
• Working in a sector that becomes an extension to your team, with many opportunities to network, travel and learn.
• Excellent training and support with the opportunity for further professional development. 
• Performance-related bonus scheme. 
• 25 days annual holiday allowance plus bank holidays off.  
• 2 wellbeing days a year to rest and recharge.
• Christmas shut-down period for a well-deserved break.
• Company contribution to pension.  
• A flexible benefits package, which is customisable by you. You can choose from private health care, life assurance, personal development, cinema tickets, wide range of discounts at retailers and so much more!