Information Security Framework Manager – Manchester, Hybrid

On behalf of our client, a well established European Bank, we are searching for an Information Security Framework Manager to bring the vision for an improved security culture to life.

Responsible for leading the successful embedding and development of the ISMS and for providing SME advice and technical guidance to stakeholders across the bank, you will collaborate across the business to ensure the upkeep of good standards and procedures. The role is offered on a hybrid working basis with one day per week in the office.

Responsibilities

• Responsible for the embedding and continual improvement of the ISMS, ensuring its effective design and operation in the Bank

 

• Ensure the clear design and articulation of information security controls which align with the Bank’s legal, regulatory, and business needs

 

• Provide stakeholders with technical guidance on control requirements, to ensure implementation and effective operation

 

• Managing the design and delivery of the bank’s ISMS process, applying a structured plan-do-check-act methodology

 

• Maintaining oversight of ISMS effectiveness in line with Framework Owner responsibilities

 

• Influencing business priorities and control owner plans for information security improvements and risk mitigation

 

• Influencing across the Bank, including senior management, to ensure clear ownership and accountability for information security controls

 

• Influencing the effective integration and ongoing alignment of the information security framework with the Bank’s Risk Management Framework and operational risk processes

 

• Responsible for creating and maintaining the bank’s Information Security policy, ISMS, Control Standards, and instructions, and for the effective planning, prioritisation, and delivery of their review cycles to ensure the framework is kept up to date, aligns to UK legal, regulatory and good practice requirements and Bank’s global minimum standard for information security

 

• Manage the planning and delivery of the team’s Information Security Framework business plan, including effectively leading and developing team members, managing any changes, new demands, requirements, or issues, and providing regular status/delivery performance reports to management as required

As an ideal candidate, you will have an industry certification such as CISSP/CISM/CRISC and have expert knowledge of information security frameworks. You will also have a proven track record of delivery in a similar role. Experience in financial services is highly advantageous.

If you have the required skills and experience, please apply now or send an updated cv to jtb@barclaysimpson.com quoting reference number 38308.