Cyber Security Manager

Overview

Demonstrable Experience in an IT role, with a strong understanding of security concepts/fundamentals.

Company Description Come join us and make a difference in the world! Discover more at  No Agencies Please.

Job Description This role can be Hybrid or Remote, subject to location. As the Security Manager, you will be part of an Info Sec team that manages the delivery of security & accreditation to the NEC business and our customers. You will interact with the wider Info Sec team and other NEC departments to support the delivery of objectives. Communication and collaboration are paramount;

you will work with the architecture team, the wider technology teams and the Data Protection Officer to ensure that processes, procedures and policies are created, updated and adhered to in order to keep us and our customers secure. The Security Manager will produce required security assurance documentation for accreditation, alongside Security Architects. You will support an accreditation programme of work by coordinating security testing, producing remediation plans and driving remediation of identified vulnerabilities with the wider business support teams to improve the security posture of our environments.

You will contribute to procurement bids and security questionnaires describing the controls in place to protect our network and customer data, and how we meet industry standards. You will support the wider Info Sec team in responding to security incidents, ensuring timely closure and root cause analysis, and issue security advice and guidance to the business in line with policies and procedures.

You will help develop content for the team and publish it to the wider business. The successful candidate will report to the Cyber Assurance Manager and join a diverse Info Sec team comprising Security Analysts, Security Engineers, Security Managers, and work closely with Security Architects and the Data Protection Officer. The role is primarily home-based with ad-hoc travel to NEC offices.

Responsibilities

• Work within the Info Sec team to support the key activities.
• Provide consistent and qualified responses to tenders and assurance questionnaires from customers.
• Produce and maintain security assurance documentation required for accreditation.
• Ensure compliance with relevant security standards, service management procedures, regulations, and industry best practices.
• Schedule security testing and create remediation plans from test reports, seeing remediation through to completion.
• Contribute to process documentation and policy review.
• Conduct security assessments and audits on people, process and technology within NEC.
• Assist in security incident management and vulnerability management.

Pre-employment Checks Required

• Baseline Standard and Disclosure Scotland (BPSS).
• On employment the candidate must be able to achieve and maintain NPPV L3+SC clearance.

Qualifications

Essential

• Proven experience working in an IT security role
• Strong knowledge of cybersecurity frameworks, standards, and regulations
• A good understanding of an approach to risk management – knowing that context is key
• Experience in writing comprehensive responses to security questionnaires or bids
• A strong focus on business outcomes

Desirable

• Delivering pragmatic security assurance documentation aligned to varying degrees of risk appetite
• Exposure to security testing processes and reports such as penetration testing
• Experience working within a shared environment with multiple tenants and requirements
• Experience in working on solutions or projects that require formal independent accreditations
• Working knowledge of Cyber Essentials Plus

Essential Attributes

• Strong and demonstrated team working experience
• High degree of personal motivation and ability to self-manage
• Ability to communicate security and technical solutions to non-technical or security resources internally and external to NEC
• Comfortable with collaboration, open communication and reaching across a range of functions and teams
• Excellent verbal and written communication skills
• Candidates must be security cleared (or able to gain clearance) to Non-Police Personnel Vetting Level 3 (NPPV)+SC

Additional Information

• We pride ourselves in offering an excellent benefits package, including an above average pension scheme. When you join the team at NEC Software Solutions, you are provided with the following:
• Private Medical Cover funded by NEC for Employees (with the option to add family members at an additional cost)
• 25 days paid holiday with the option to buy/sell
• 4 x basic salary life assurance cover funded by NEC (with the option to increase cover at an additional cost)
• A Group Pension Plan with fantastic employer contributions up to a maximum of 8.5%
• A selection of flexible benefits to suit your individual needs

Candidates must be able to demonstrate a pre-existing right to work and travel within the UK. Documentary evidence will be required.

All offers are subject to satisfactory vetting and reference checks. Depending on the nature of the…