NSE ISMS Cybersecurity Manager, 12-24 Month FTC/Secondment

at  Deloitte

REQ #

16844
Job description

CONNECT TO YOUR SKILLS AND PROFESSIONAL EXPERIENCE

Essential

• Extensive and in-depth experience of information security, management systems and risk management practices.
• Extensive and in-depth experience of information security frameworks, including the ISO 27001 standard and support guidance documentation including ISO 27002.
• Effective business communication skills to inform, partner, influence and manage key stakeholders to embed effective information security activities and processes.
• Ability to lead and collaborate with cross functional teams in a dynamic environment.
• Good understanding of balancing the role between business stakeholders and a central service organisation.
• Business acumen, ability to take a strategic and commercial view
• Knowledge of European Union Directives including privacy regulations and cross border personal data transfer requirements (GDPR), as well as incident response handling procedures.
• Up-to-date knowledge of cyber and information security trends and threats.

Desirable

• Professional certification in CISSP, CISM or equivalent is considered an advantage.
• Prior experience of leading transformation initiatives and strong programme management skills are highly desirable

OUR PURPOSE & STRATEGY

Our NSE Ambition focuses on five characteristics - purpose led; universal leaders, inclusive culture; advisory growth, delivery strength; global scale, local touch; and, digital first – which will differentiate our business in the future, enable us to stand further apart from the competition, attract and retain the best talent and be a recognised leader in societal impact – to become THE winning firm.At Deloitte, we tackle our clients’ and society’s challenges to create progress and possibility for those our work affects. We make an impact that matters. That’s our purpose.

The ISMS Manager will be responsible for leading our efforts in establishing, implementing, and maintaining our ISMS requirements across NSE. The person will play a key role in consolidating ISMS activities across each NSE geo where applicable as well as supporting ongoing certification requirements

• Work with each NSE geo to coordinate ISMS maintenance activities and ensure audit readiness.
• Establish and maintain common ISMS artefacts, including applicable scoping documents, policies and standards and risk treatment documentation.
• Collaborate with cross functional teams across NSE to ensure mandated security controls and risk treatment plans are integrated into business processes and IT systems.
• Assist in the coordination of ISMS control monitoring activities across NSE.
• Liaise with internal audit as part of their regular ISMS internal audits and assist with audit remediation activities.
• Stay informed about the latest trends and developments in information security, the ISO 27001 standard and supporting guidelines, and proactively recommend enhancements to the ISMS.
• Prepare and present comprehensive reports on the status of ISMS implementation across NSE.
• Ensure that ISMS implementation is integrated into the Information Security Strategy and Operating Model