Job Description
My client, a global law firm are looking for an Information Security Manager for 12 months of maternity cover. The role is concerned with the governance, risk, and compliance elements of general information security; it is not a technical IT/Cyber Security role albeit a strong appreciation of IT and IT/Cyber Security concepts is required for this role to be successful.
Responsibilities:

• Primary point of contact for information security issues in our UK, US & EMEA offices.
• Maintaining information security standards, guidelines, procedures, and local exceptions.
• Day-to-day management of user behaviour and data leakage tools and follow-up.
• Maintaining our ISO 27001 certification, in particular:
  • Supporting security governance activities.
  • Maintaining ISMS tools and documentation.
  • Risk assessing new systems and suppliers.
  • Supporting and responding to security audit activities.
• Developing new content and methods for security education and awareness.
• Providing information security advice to the business.
• Providing assurance to external stakeholders, including:
  • Client information requests
  • External certification audit
  • Client site audits
• Assisting with day-to-day operational issues and incidents.

As an ideal candidate, you will have an industry certification such as CISSP/CISM/CRISC and have expert knowledge of Information Security. You will also have a proven track record of delivery in a similar role. Experience within the Legal Sector is highly advantageous.