Information Security Risk Manager

  • Location

    Birmingham, West Midlands

  • Sector:

    IT

  • Job type:

    Permanent

  • Salary:

    Negotiable

  • Contact:

    Elsa Roberts

  • Contact email:

    Elsa.Roberts@experis.co.uk

  • Job ref:

    ER20_1557734588

  • Published:

    3 months ago

  • Expiry date:

    2019-06-12

  • Client:

    #

Information Security Risk Manager-Birmingham

New and exciting opportunity for a passionate and dedicated Information Security Risk Manager looking for the next stage in their career.

Our client is a national organisation with several UK locations looking for an Info Sec Risk Manager with a demonstrable interest in IT Security to join their already talented team based in Birmingham.

You will be working in partnership with the CISO representing security strategy and security interest across all levels of the business.

As Information Risk Manager you will be responsible for the overall information risk function, providing leadership, co-ordination, analysis and management for all information risk management activities. You'll create and maintain a uniform approach to information risk management including the identification, evaluation, prioritisation, minimisation, monitoring and control of information risks, with a specific emphasis on the supply chain.

Your responsibilities would include:

  • Applies information risk management knowledge, skills, tools and techniques in supporting business personnel, providing best practice advice, guidance, coaching and mentoring to drive the development of an information risk-based culture.
  • Provides strategic challenge, overview and scrutiny, ensuring alignment with wider information risk management policies and strategic initiatives.
  • Ensures the timeliness and quality of information risk reports and collects and collates metrics to measure overall and specific performance of the business on information risk matters.
  • Champions information risk management, operates as moderator, identifies and prioritises significant risks, ensuring decision making and escalation/resolution where required.
  • Supports information risk management across both IT and business unit teams.
  • Assists with the planning, monitoring, and delivery of information risk management activities.
  • Standardises ways of performing information risk management across teams including the creation of key documentation and following the information risk process end to end.
  • Proactively assist the CISO by providing direct support, expert advice and direction regarding information risk management best practices.
  • Actively participates in the development of best practice, policy and procedures, relating to information risk management, providing independent advice as required.
  • Provide direction and leadership on all information risk management matters including assurance and compliance to relevant standards.
  • Direct and manage relevant staff within a matrix organisation.

Required skills and experience include:

  • Demonstrable experience working in and managing information risk management is essential.
  • Experience is creating an information risk framework from scratch or improving an existing operation would be advantageous.
  • A good knowledge of a GRC tool is desirable and MS Excel is essential.
  • Possesses a strong knowledge of different risk methodologies and Standards - ISO27005, IRAM, OCTAVE would be advantageous.
  • Proven stakeholder and people manager.
  • Experience working with technical and non-technical teams.
  • Motivating, positive, energetic and helpful.
  • Excellent written and verbal communication.
  • Excellent analytical skills and attention to detail

Are you the person we're looking for?
Interviews are taking place immediately, send a CV ASAP or to find out more call 0161 924 1415