A fantastic opportunity has arisen for an Information & Cyber Security Manager to join a rapidly growing business within the fibre industry.

Role

To protect Our clients' (FFL) information assets and infrastructure against all threats internal and external.

To support the CRO and compliance team in ensuring the company is fully compliant with UK law and best practice standards for the telecoms industry and play a key part in establishing and maintaining the cyber & information security procedures across the business ensuring they are fit for purpose.

You will be creating & managing a new Information Security Team, and Security Operations Centre (SOC) function. This function maybe in house or outsourced.

The SOC function will work closely with the Network Operation Centre (NOC) function.

You will direct and monitor security policies, regulations and rules that the FFL technical teams implement. Knowledge in areas like information security governance, program development and management, incident response and risk management are important to success in this role.

Responsibilities

• Monitor all operations and infrastructure
• Maintain all security tools and technology
• Assist the NOC and Networks teams in their roles, and help with incident response in those areas
• Monitor internal and external policy compliance in your area
• Monitor regulation compliance
• Ensure compliance with any of our customer security requirements
• Work with different departments in the organisation to reduce risk
• Implement new technology
• Ensure cybersecurity stays on the organisational radar
• Detail out the security incident response program
• Help create the information security team, and the security operations centre (SOC) function
• Create and managing security strategies
• Understanding and implementing the relevant parts of the Telecoms Security Act 2021, and the Technical Security requirements around this
• In conjunction with the compliance team oversee information security audits, whether by performed by organisation or third-party personnel
• Manage security team members and all other information security personnel
• Provide training to information security personnel during onboarding
• Evaluate department budget and costs associated with technological training
• Assess current technology architecture for vulnerabilities, weaknesses and for possible upgrades or improvement
• Implement and oversee technological upgrades, improvements and major changes to the information security environment
• Serve as a focal point of contact for the information security team and the customer or organisation
• Provide information security awareness training to organisation personnel
• Communicate information security goals and new programs effectively with other department managers within the organisation
• Carrying out risk and vulnerability assessments
• Develop and manage business continuity plans
• Implementing security policies, standards, and procedures
• Investigating any security breaches
• Proactively test our IT infrastructure

Knowledge, Skills and Experience

• Working knowledge of ISO27001, Cyber Essentials & NIST compliance programs, and support audit activities
• Setup and Operation of SIEM & SOAR solutions
• Knowledge of Cyber and Data Security laws and regulations (eg Data Protection Act 2018, GDPR, Computer Misuse Act 1990, National Security Investment Act 2021, The Electronic Communications (Security Measure) Regulations 2022
• Previous experience in Cyber & Information Security Management, ideally within the telecoms sector within a wholesale environment
• Industry recognised Information Security or audit qualification i.e. CISSP/CISM/CISA, or experience equivalent to
• Hands on skill set in cyber security
• Experience with cyber forensic investigations
• Desire to develop Information Security capabilities
• Current, and ongoing knowledge of the cyber security risk landscape

Benefits

• Generous pension - employer 6%, employee 3%
• 25 days holiday entitlement, plus the 8 bank holidays and an extra day for your birthday
• Discretionary Bonus
• Hybrid working/flexible working
• BUPA Private Medical Insurance
• BUPA Cash Plan and Wellbeing Employee Assistance Programme (EAP)
• Reward and Recognition Gateway
• Annual Christmas closure between Christmas and New Year
• Bi-annual Company Events

Important Information: We endeavour to process your personal data in a fair and transparent manner. In applying for this role, NMS will be acting within your interest and will contact you in relation to the role, either by email, phone or text message. For more information see our Privacy Policy h t t p : / / w w w . n m s r e c r u i t . c o m / p r i v a c y - p o l i c i e s on our website. It is important you are aware of your individual rights and the provisions the company has put in place to protect your data. If you would like further information on the policy or the GDPR please contact us on a d m i n @ n m s r e c r u i t . c o m