Zaizi is a software consultancy specialising in building bespoke digital solutions using open source software and cloud platforms. We predominantly work with central government agencies and adhere to the Government Digital Service standard.
Zaizi takes security seriously, we are certified to ISO 27001:2013 and Cyber Essentials Plus. As part of our continued growth, we are now looking to hire an experienced Information Security Manager.
You will ensure that our obligations under ISO 27001 are met and undertake a cycle of confirmation as well as managing our ISMF meetings
You will ensure that we meet our obligations under ISO 9001 and that the relevant documents and process have been audited.
You will undertake Risk management workshops internally for our own compliance as well as externally for our clients
You will analyse and advise on security compliance to standards for the application and cloud solution we build and or support.
Requirements
- Be accountable for IT and Security, including assets, budgets, software, forward planning, etc.
- Being accountable for security, quality and environmental accreditations, such as ISO 27001, 9001, Cyber Essentials Plus, etc. This will include managing internal security tools and processes that form part of the Integrated Management Systems.
- Ensure team processes are managed effectively with a focus on continuous improvement
- Drive a culture of security awareness and embedding security by design principles across Zaizi
- Have ownership of security processes encompassing Threat Detection and Incident response, Vulnerability and patch management, Security Advisory and consultancy, and Security Testing, scoping, and organising External Pen Testing
- Work closely with our Leadership team, providing reports on security metrics
- Ensure security is considered across projects and product development
- Support Enterprise Risk and Compliance, leading on IT Risk management
Experience
- Strong industry experience - at least 7 years in IT & Security focused role
- You are an experienced supportive manager and can get the best out of your team.
- You are keen to share your knowledge and are open to giving (and receiving) continuous feedback
- Strong communicator who thrives working cross-functionally across multiple teams
- You can influence people of all grades to deliver the right outcomes
- Security Management (ITILv4)
- Continuous Monitoring/Threat Alerts
- Managing security incident and non-conformances
Salary:
£70,000-£90,000
Benefits
25 days paid holiday, plus bank holidays
BUPA medical insurance
Workplace Pension 5% employer contribution
Group Life Assurance
Cyclescheme
5 days a year for approved Training
WFH equipment allowance
Buy / Sell Holiday
2 days paid volunteering days
Other benefits:
Flexible working
Work on exciting projects - make a difference
Empowered to make decisions
Encouraged to fail fast and learn quickly
1-2-1 and team coaching / training available to all our staff.
2 jobs found