Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Manage day-to-day information security and lead incident response efforts.
- Company: Join a dynamic law firm focused on enhancing its IT security landscape.
- Benefits: Enjoy a competitive salary, flexible hours, and opportunities for professional growth.
- Why this job: Be at the forefront of cybersecurity in a collaborative environment with real impact.
- Qualifications: CISSP or CISSM certification required; GDPR knowledge essential.
- Other info: This is a 3-month fixed-term contract based in Canary Wharf.
The predicted salary is between 39000 - 65000 £ per year.
Reporting to the CIO, you will be responsible for managing the day-to-day information security at the firm. Working closely with third-party providers, you will ensure that the day-to-day IT security suppliers perform to expectations.
You will take part in ongoing and upcoming improvement projects, working through the implications within hardware and software changes and upgrades, cyber security risk analysis, and information security policies.
You will lead in the incident response to any information security breach, working closely with the rest of the IT Team, as well as risk and compliance functions. Previous law firm experience is advantageous.
Key Responsibilities:
- Line management of the Information Security Analyst.
- Provide authoritative advice and guidance on security controls in collaboration with experts in other functions (e.g., legal, technical support). Ensure architectural principles are applied during design to reduce risk and drive adoption and adherence to policy, standards, and guidelines.
- Maintain and manage the Security Incident Response plans and affected processes.
- Oversee information security initiatives, including audit action points.
- Assess risks to the availability, integrity, and confidentiality of the firm’s systems. Coordinate the planning, designing, and testing of maintenance procedures and contingency plans to address exposure to risk and ensure that agreed levels of continuity are maintained.
- Work with external security providers to proactively maintain a secure environment. Deliver projects in collaboration with other IT Team members to further improve the security posture of the firm.
- Proven track record of delivering security improvements to time, cost, and quality controls.
- CISSP or CISSM certification essential.
- Thorough understanding of GDPR essential; related qualifications desirable.
- ISO 27001 accreditation and experience of implementing such advantageous.
- Knowledge of Microsoft Intune, Group Policy, and Windows 10 Security; DMARC implementation advantageous.
- Excellent knowledge of MS Office; working knowledge of program/project management software (Basecamp, MS Project, etc.). Knowledge of professional services and partnership environments advantageous.
- Normal office hours are 9.30 am until 5.30 pm, flexibility required. Based in Canary Wharf with occasional travel to central London.
- This is an initial 3-month FTC. Salary is circa £65k (will be on pro-rata).
- Must be UK based.
#J-18808-Ljbffr
Information Security Manager (FTC) employer: Bench Direct
Contact Detail:
Bench Direct Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Security Manager (FTC)
✨Tip Number 1
Make sure to highlight your experience with incident response and risk analysis in your conversations. This role requires a proactive approach to security, so demonstrating your ability to manage breaches and assess risks will set you apart.
✨Tip Number 2
Familiarize yourself with the specific security frameworks and standards mentioned in the job description, such as GDPR and ISO 27001. Being able to discuss these frameworks in detail will show that you're well-prepared for the responsibilities of the role.
✨Tip Number 3
Network with professionals in the legal and information security fields. Engaging with others who have experience in law firms can provide valuable insights and potentially lead to referrals or recommendations.
✨Tip Number 4
Stay updated on the latest trends and threats in information security. Being knowledgeable about current issues will not only help you in interviews but also demonstrate your commitment to maintaining a secure environment.
We think you need these skills to ace Information Security Manager (FTC)
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in information security management, particularly in a law firm environment. Emphasize your certifications like CISSP or CISSM and any experience with GDPR and ISO 27001.
Craft a Strong Cover Letter: In your cover letter, clearly articulate your understanding of the role and how your previous experiences align with the responsibilities listed. Mention specific projects where you improved security measures or managed incident responses.
Highlight Technical Skills: Be explicit about your technical skills related to Microsoft Intune, Group Policy, and Windows 10 Security. If you have experience with DMARC implementation or project management software, make sure to include that as well.
Showcase Leadership Experience: Since the role involves line management of the Information Security Analyst, highlight any previous leadership roles or experiences where you guided teams or collaborated with other departments on security initiatives.
How to prepare for a job interview at Bench Direct
✨Showcase Your Security Expertise
Be prepared to discuss your previous experience in information security, especially in a law firm setting. Highlight specific projects where you successfully managed security improvements and how you ensured compliance with regulations like GDPR.
✨Demonstrate Leadership Skills
Since you'll be managing the Information Security Analyst, it's crucial to showcase your leadership abilities. Share examples of how you've led teams or projects in the past, focusing on your approach to mentoring and guiding others in security practices.
✨Understand the Technical Landscape
Familiarize yourself with the technical tools mentioned in the job description, such as Microsoft Intune and Windows 10 Security. Be ready to discuss how you've used these tools in previous roles to enhance security measures.
✨Prepare for Scenario-Based Questions
Expect questions that assess your problem-solving skills in real-world scenarios, such as responding to a security breach. Prepare to outline your thought process and the steps you would take to manage such incidents effectively.
