At a Glance
- Tasks: Lead cybersecurity efforts, manage external partners, and ensure data protection standards.
- Company: Bestway Group, a forward-thinking company prioritising security and compliance.
- Benefits: Competitive salary, private medical, life assurance, and generous leave options.
- Other info: Dynamic role with opportunities for growth in a supportive environment.
- Why this job: Join us to shape the future of cybersecurity and protect vital data.
- Qualifications: Experience with MSSP/MDR vendors and knowledge of ISO 27001 and UK GDPR.
The predicted salary is between 80000 - 100000 £ per year.
Reporting to the IT Director, you will lead Bestway’s cybersecurity function through a modern, 3-Layer Operating Model. Your primary focus is to govern our outsourced Managed Detection & Response (MDR/SOC) partners, own the internal GRC (Governance, Risk, and Compliance) framework, and ensure data protection standards are met. You will act as the strategic link between external security experts and our internal Architecture and Platform Engineering teams to ensure Bestway remains secure, compliant, and AI-ready.
Key Responsibilities
- Act as the primary owner for our outsourced 24/7 SOC/MDR partners. Monitor their performance against SLAs, manage incident escalations, and ensure they are proactively hunting threats across our Azure and Snowflake environments.
- Own the implementation and operation of data security to discover, classify, and protect sensitive data across the group, supporting our broader AI roadmap.
- Maintain the Group Information Security Policy, Cyber Risk Register, and Risk Appetite statements.
- Lead internal and external security audits, ensuring UK GDPR compliance and managing regulatory reporting.
- Partner with the technology team to ensure that cybersecurity policies are translated into automated 'Golden Path' guardrails.
- Translate complex security alerts into business-relevant risk stories for the IT Director and the Board.
Required Skills and Experience (Must-have)
- Proven experience managing high-performance external Managed Security Service Providers (MSSP) or MDR vendors.
- Deep knowledge of ISO 27001, NIST, and UK GDPR. Experience maintaining a formal Enterprise Risk Register.
- Familiarity with DSPM (Data Security Posture Management) tools like Cyera or similar data discovery platforms.
- High-level understanding of Azure/AWS security controls, Identity protocols (OIDC/SAML), and MFA strategies (Entra ID).
- Experience coordinating response and recovery efforts between external forensic teams and internal IT functions.
- Ability to tell 'risk stories' that align security investment to margin preservation and business continuity.
- Skilled at holding external partners accountable and driving value from service contracts.
- Focuses on material risk reduction rather than theoretical compliance.
Benefits
- Pension
- 22 days annual leave plus the option to buy additional days
- Life Assurance
- Private Medical
- Onsite parking
Bestway Group is an equal opportunity employer.
Senior Cybersecurity Manager in London employer: Bestway Group
Bestway Group is an exceptional employer, offering a dynamic work environment in Park Royal, where innovation meets security. With a strong focus on employee growth, we provide comprehensive benefits including private medical insurance and generous annual leave, alongside opportunities to lead cutting-edge cybersecurity initiatives that directly impact our business continuity and compliance. Join us to be part of a collaborative culture that values your expertise and empowers you to drive meaningful change in the cybersecurity landscape.
StudySmarter Expert Advice🤫
We think this is how you could land Senior Cybersecurity Manager in London
✨Tip Number 1
Network like a pro! Reach out to your connections in the cybersecurity field, attend industry events, and engage with professionals on platforms like LinkedIn. We all know that sometimes it’s not just what you know, but who you know that can help you land that Senior Cybersecurity Manager role.
✨Tip Number 2
Prepare for those interviews by brushing up on your knowledge of ISO 27001, NIST, and UK GDPR. We want you to be able to discuss how you’ve managed MSSPs or MDR vendors effectively. Show them you’re the expert they need to keep Bestway secure and compliant!
✨Tip Number 3
Don’t forget to showcase your ability to translate complex security alerts into business-relevant risk stories. We believe this skill is crucial for the role, so practice explaining technical concepts in simple terms. It’ll impress the IT Director and the Board!
✨Tip Number 4
Finally, apply through our website! We love seeing candidates who are genuinely interested in joining Bestway. Make sure your application reflects your passion for cybersecurity and your commitment to protecting sensitive data across the group.
We think you need these skills to ace Senior Cybersecurity Manager in London
Some tips for your application 🫡
Tailor Your CV:Make sure your CV speaks directly to the job description. Highlight your experience with Managed Security Service Providers and any relevant certifications like ISO 27001 or NIST. We want to see how your skills align with our needs!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to tell us about your journey in cybersecurity, especially your experience with GRC frameworks and data protection. Show us why you're the perfect fit for Bestway!
Showcase Your Achievements:Don’t just list your responsibilities; share your achievements! Whether it's improving security protocols or leading successful audits, we love to see how you've made an impact in your previous roles.
Apply Through Our Website:We encourage you to apply through our website for a smoother process. It helps us keep track of your application and ensures you don’t miss out on any important updates from us!
How to prepare for a job interview at Bestway Group
✨Know Your Cybersecurity Frameworks
Make sure you brush up on ISO 27001, NIST, and UK GDPR before the interview. Being able to discuss these frameworks confidently will show that you’re not just familiar with them, but that you can apply them in real-world scenarios.
✨Demonstrate Your Vendor Management Skills
Prepare examples of how you've successfully managed high-performance external Managed Security Service Providers (MSSP) or MDR vendors. Highlight specific incidents where you monitored performance against SLAs and drove value from service contracts.
✨Translate Technical Jargon into Business Language
Practice explaining complex security alerts in a way that’s relevant to business stakeholders. Being able to tell 'risk stories' that align security investments with business continuity will set you apart from other candidates.
✨Showcase Your Incident Response Experience
Be ready to discuss your experience coordinating response and recovery efforts between external forensic teams and internal IT functions. Share specific examples of how you’ve handled incidents and what you learned from those experiences.
