Information Security Lead
Hybrid working: 3 days per week in the office.
The Information Security Lead will play a pivotal role in shaping my clients cyber resilience strategy. The role involves providing expert guidance to stakeholders on information security matters, managing technical cybersecurity tools and operations, and overseeing compliance with regulatory standards. It will lead the development and execution of the cyber and information security strategy, ensuring alignment with ISO 27001, GDPR and Cyber Essentials.
The ideal candidate will have strong information security experience alongside hands-on technical knowledge of SIEM, EDR, vulnerability management, and incident response.
Responsibilities:
- Serve as a subject matter expert for information security, advising stakeholders on risks, controls, and security best practices.
- Support business units with risk-based security input for projects, client bids, and technology initiatives.
- Manage cybersecurity tooling including SIEM, EDR, and mail filtering systems to ensure effective threat detection and response.
- Monitor, investigate, and respond to alerts and incidents, coordinating with internal teams and third-party providers.
- Oversee regular vulnerability scans and third-party penetration tests; track and report remediation efforts.
- Maintain the internal compliance programme for information security and data protection, ...