IT Security Risk Manager


Premium Job From Computer Futures

Recruiter

Computer Futures

Listed on

24th July 2017

Location

London

Salary/Rate

£75000 - £85000

Type

Permanent

Start Date

ASAP

This job has now expired please search on the home page to find live IT Jobs.

IT Security Risk Manager - London

ISO27001 - PCI - NIST - SOX - Risk - Information Security - Recovery

The role is with a longstanding Financial Service client of ours who offers an environment quite different to other organisations in the same sector. A lack of bureaucracy and red tape, clear career progression and the ability to be heard is what has really attracted top talent to this company over the years. A strong remuneration is on offer for the right person along with an excellent wider benefits package. As the IT Security Risk Manager you will need experience of;

* Being accountable for ensuring that at all relevant elements of technology security are managed, supported and maintained within, providing assurance that the risk profile is fully understood in respect to perimeter and internal security, policy adherence to Industry Standards, Disaster Recovery and Business interruption

* Supporting the business in its operation and growth whilst reducing IT Security Risk to an appropriate level.

* Ensuring adherence to both set bank standards and industry best practise.

* Managing and develop the Bank's IT Security Risk Team.

* Directing the overall risk management process including risk assessment and evaluation in line with the 'risk appetite'. Risk reporting in an appropriate way for different audiences.

* Managing the company's risk register to ensure that all IT Security risks are remediated where possible, reduced to an acceptable level or recorded, understood and signed off at the appropriate level.

* Maintaining PCI DSS and other applicable compliance standards.

* Working with Internal and External audit to assure IT Security.

* Assuring the patching policy and implementation of patch plans. To be worked through in accordance with set PCI compliance standards and timelines.

* Ensuring quarterly penetration testing and project based penetration testing is completed and risks remediated through technologies such as Nessus, sslscan and Wire shark or third parties.

* Acting as a Subject Matter Expert on IT Security Risk for the Business.

* ISO27001, PCI-DSS, NIST, SOX

If you are experienced in the areas listed above then please do not hesitate to apply!

Sthree UK is acting as an Employment Agency in relation to this vacancy.

You are currently using an outdated browser.

Please consider using a modern browser such as one listed below: