This is anexciting time to join the Cyber Security Team at Affinity Water in a criticalrole.
The CyberSecurity Manager will be afforded a large amount of autonomy to manage theInformation Security Management System and help shape the future Cyber Securitylandscape within the business. The CSM will be looked to as a subject matterexpert within the business, supporting a variety of business functions in theaim to remain secure while delivering an excellent service to our customers.This role will combine strategic thinking with technical expertise and drawupon a multitude of different skill sets. The CSM role is an excellent positionfor someone looking to take the next step in their Cyber career
As a pivotal figure within our organisation, this roledemands an individual with a comprehensive understanding of security riskassessments, Information Security Management Systems (ISMS), and the ability todevelop and implement robust security policies and procedures.
Responsibilities:
1. Oversee and manage the ISMS, including the creation and maintenance of related policies, procedures, and standards, with the aim of achieving ISO27001 certification.
2. Conduct thorough security risk assessments across all organizational assets and ensure proper documentation.
3. Perform third-party security risk assessments to maintain a secure supplier ecosystem.
4. Develop and implement Key Performance Indicators (KPIs) within the security function and report findings to appropriate stakeholders.
5. Collaborate closely with all departments, including the Executive Leadership Team and Technical IT specialists.
6. Assist in the creation, implementation, and maintenance of security controls aligned with the NIST Cyber Security Framework.
7. Possess a deep understanding of Operational Technology within a Critical National Infrastructure (CNI) environment.
8. Support the Head of Security in generating executive reports and presentations.
9. Provide guidance and support to senior managers regarding training and awareness initiatives.
10. Advise on security requirements for various projects and liaise with regulators, external authorities, and industry partners.
11. Contribute to the strategic direction of the cyber security function.
Requirements:
12. Proven experience in operating and enhancing an ISMS.
13. Demonstrable expertise in assessing internal security controls and offering remediation advice to diverse stakeholders.
14. Strong familiarity with control frameworks such as ISO27001 and NIST CSF.
15. Understanding of current and emerging threats to CNI organizations.
16. Track record of driving cultural change in a cyber security environment.
17. Industry-recognized certification in enterprise security management (e.g., CISSP, CISM, CISA).
18. Excellent written and verbal communication skills.
Desirable:
19. Knowledge of security technologies including SIEM, AV, Behavioral Detection, AI and ML, Email Security, and IEC62443.
20. Direct experience managing security incidents.
21. Familiarity with the UK Water industry and PCI DSS.
Benefits include:
22. Salary dependent on experience
23. Level 2 car allowance £4305 per annum
24. Annual leave 23 days, plus a celebration day, plus bank holidays, rising with length of service
25. A generous pension scheme that doubles the contributions you make, up to a maximum of 12%
26. We offer enhanced Maternity, Adoption and Shared Parental Leave. We also have a Carers policy and Menopause policy to help us support our people through different stages of their lives.
27. Company bonus scheme
28. Access to our Wellbeing Centre with support for looking after your physical and mental health
29. Improve your home-work balance with the opportunity for hybrid working
PR1
You can find out what it’s like to work at AffinityWater through our career site where our colleagues share their career developmentstories and you can get a feel for our company culture.
Affinity Water recognises the benefits of greaterdiversity in our workforce to better reflect the communities we serve. We arecommitted to building a more inclusive culture where every member of ourworkforce can thrive.