Information Security Manager2024-04-02T15:59:43+01:00
Unfortunately, this job is no longer available; however, we may have many other great career opportunities in London, England, UK on our
job board. Alternatively,
click here if you'd like to discover how to advertise with us for as little as £29+VAT.
Information Security Manager Job Vacancy in London, England, UK
Balfour Beatty
About the role
Balfour Beatty has an exciting opportunity for an Information Security Manager to join our growing team in London.
The role is required to satisfy the Information Security and Cyber Security obligations defined in WI1800. The role holder will support the BBVS IT & Facilities Manager in assuring BBVS and supply chain cyber security posture is at an appropriate level.
What you’ll be doing
Lead on the delivery of good cyber security practices
Perform gap analysis and shape BBVS Information Security Management System against ISO/IEC 27001:2013 to ensure alignment.
Maintain BBVS Information Security and Cyber Security Management Plan
Review subcontractor Information Security and Cyber Security Management Plans and reports
Ensure cyber security controls are in place and monitored
Stay current with and maintain knowledge of cyber-attacks and counter measures
Schedule penetration tests and interpret results in the given context of the overarching security posture to ensure any mitigations are prioritised and implemented
Lead on regular vulnerability assessments with a view to closing off or mitigating any identified problems
Establish information security controls over BBVS Teams and SharePoint services
Maintain IT Risk Register
Chair Information Security Working Group meetings with JV Partner Information Security representatives
Raise awareness of good cyber security throughout BBVS with regular communications/training
Provide leadership on BBVS SharePoint management
Development and maintenance of BBVS ISMS in alignment with ISO/IEC 27001:2013Ownership of BBVS Information Security & Cyber Security PlanLeadership of preparation for external auditsIdentification of security problems and risksSupply Chain Information Security and Cyber Security assuranceRaising BBVS Information Security awareness through Communications and TrainingActively identifies risks and escalates upwards to ensure appropriate risk mitigation (as appropriate).Information Security governance/alignment to JV partner requirementsManagement of IT and Information Security Risk RegisterBBVS SharePoint access managementContribute to the effective operation of the BBVS team through continuous improvement. Proactively takes responsibility, owns any issues arising and follows through to resolution It is expected that you will actively promote and embed Equality, Diversity and Inclusion (EDI) in all your work and support and comply with all organisational initiatives, policies and procedures on EDI.
Who we’re looking for
Certificate in Information Security Management Principles (or equivalent)
Familiarity with ISO/IEC 27001:2013 and controlsFamiliarity with SANS 20 critical security controls and UK Top 10/Cyber EssentialsFamiliarity with GDPR and computer misuse actExperience within the construction industry desirableExperience with UK Government cyber strategies and compliance standardsFamiliarity with SharePoint AdministrationWorking within a high energy team environment with high dependence on IT services
Characteristics:
Good understanding of IT and cyber securityTakes responsibility, is independent and self-starting.Demonstrates teamwork at a high level, highly collaborative approach, among the first to volunteer to help others succeed.Demonstrates the BBVS Values (Respect, Teamwork, Integrity, Excellence).
Why work for us
Day in, day out, our teams deliver amazing projects in challenging conditions; developing, managing and maintaining the vital infrastructure and public spaces that modern economies, societies and communities rely on.
