Information Security Manager
- Employer
- allpay Limited
- Location
- Whitestone Business Park, Herefordshire, HR1 3SE
- Salary
- Competitive
- Closing date
- 27 May 2022
View more
- Sector
- Banking, Finance, IT
- Job Role
- Compliance, Information Security Officer, ISO27001, PCI DSS
- Job Type
- Permanent
About The Role
We have a fantastic opportunity for an Information Security Manager to join our Senior Management Compliance Team.
This is a hands-on role, reporting to the Director of Compliance and Regulation. The post-holder will be instrumental in delivering and maintaining our Information Security Management System (ISMS) to ensure systems and services meet the requirements of ISO27001, PCIDSS, Cyber Essentials Plus and PCI Card Production Standards.
You will be joining an enthusiastic organisation that delivers innovative and market leading payments services that meet the highest security and compliance standards. We are looking for a motivated individual who can balance risk against business continuity and support service development while maintaining information security assurance. If you enjoy learning new technologies and converting your knowledge and ideas into a reality, you would be a great fit for us.
Your key responsibilities will include policy and procedural development, internal auditing, risk assessments, control selection and implementation, employee awareness and non-compliance and non-conformance management. You will be recommending appropriate controls to be signed off by the Board, and working with all business units to review, develop and improve security practices with regards to culture, risk, threats, controls, policy, process, and procedures.
We are not looking for full-time attendance at our headquarters, but we do require you to have a presence on site for key meetings and audits.
We actively encourage professional development through training and certification, backed up by real-world implementation and delivery.
About You
The ideal candidate will have the following:
- Proven experience in an Information Security Management role.
- An understanding of ISMS and Standards including ISO27001, PCI DSS, Cyber Essential Plus, GDPR (PCI Card Production an advantage but not essential).
- Technical certification (SSCP, CISSP, LPT, CREST) or equivalent.
- Internal auditing experience/qualification in Information Security (ISO 27001).
- Experience of dealing with investigations of security events and providing root cause analysis.
- A good understanding of IT administration and networking technologies.
- Excellent written and verbal communications skills with the ability to form effective working relationships with other staff and stakeholders.
- Confident in communicating technical information security incidents or security threats to non-technical staff and stakeholders.
- Passion and desire to learn new skills and work towards qualifications where applicable.
- Strong attention to detail and excellent writing and analytical skillset.
- Determination and tenacity to drive service and security improvements across the business and the ability to assess effectiveness of control measures and making improvement suggestions.
- As a Senior Manager you will be an escalation point and a subject matter expert, coaching and the wider business on information security related issues.
About Us
People are at the heart of allpay and we reward our employee with a competitive benefits package which includes, a defined contribution group pension scheme, income protection, life assurance, an array of health and wellbeing options including private healthcare cover and an onsite gym. This is coupled with our excellent Learning and Development offering.
We work with some great recruitment agencies. We don’t choose to partner with everyone. Explicit consent or confirmation must be received from our HR department before we accept CV’s. Contractual terms and specific campaigns must have been signed and agreed before you are considered a partner. We never accept unsolicited CV’s, EVER! Even from our trusted partners. We consider it “spoiling,” which does not endear you to us. By sending us unsolicited CV’s we deem these a free gift. If we choose to engage these candidates directly we will not pay you any fees. You will be deemed to have accepted this zero fee by providing unsolicited or spoiled candidates.
We are a company committed to Equal Opportunities.
All roles at allpay Limited are subject to successful background checks including a DBS and Credit Check.
Get job alerts
Create a job alert and receive personalised job recommendations straight to your inbox.
Create alert