At a Glance
- Tasks: Manage information security and support network engineering initiatives in a hybrid role.
- Company: Join a forward-thinking IT team focused on security and innovation.
- Benefits: Competitive salary, flexible working options, and opportunities for professional growth.
- Other info: Dynamic role with leadership opportunities and a chance to shape security policies.
- Why this job: Make a real impact by safeguarding our digital landscape and enhancing network security.
- Qualifications: Expertise in information security frameworks and network management skills required.
The predicted salary is between 60000 - 80000 £ per year.
We are seeking a dual expertise professional to manage our information security posture while also providing support for network engineering initiatives assisting the network team. This hybrid role requires a strategic thinker who can design secure architectures, implement defensive controls, and support our core network and security infrastructure. This role will report into the Head of IT and will be part of the IT management team. This role will on occasion be required to deputise for the Head of IT and be on the IT duty manager on call rota.
Key Responsibilities
- Information Security Management
- Framework Governance: Align systems with ISO27001, NIST and CBEST frameworks.
- Risk Assessment: Review new service implementations both on prem and cloud based and ensure systems and services comply with our security standards.
- Risk Mitigation: Conduct regular vulnerability scans and coordinate external penetration testing.
- Incident Response: Work with our outsourced partner on the investigation and containment of active security threats.
- Monitoring: Work with our outsourced partner to ensure 100% SIEM coverage of all IT assets.
- Compliance & Policy: Create, update and enforce corporate information security policies.
- Network Management
- Infrastructure Design: Architecture of resilient LAN, WAN and VPN environments.
- Hardware Lifecycle: Configure and maintain routers, switches and firewalls.
- Disaster Recovery: Maintain automated backup systems and network failover protocols.
Required Skills and Knowledge
- Palo Alto Firewalls – Specialist Level, Architect Level Preferred
- Network Access Control including Cisco ISE, TACACS etc.
- Network Detection and Response
- Network Zero Day (Trellix NX or similar)
- Host Zero Day (Trellix HX or similar)
- Cyber Security Network Control
- Incident Investigation with the assistance of group cyber security experts – Tier 1, Tier 2 to 3 preferred, using LogRhythm SIEM a bonus
- Host End Point Protection (Symantec)
- Cisco Network Switches Layer 2 and 3 (Catalyst 9K) – CCNP Level, Expert Level Preferred
- Routing protocol – OSPF (Catalyst 9K) – CCNP Level, Expert Level Preferred
- Cisco Switch Stacking (Cat 9K Switches 9600, 9300, 9200)
- Virtual Routing and Forwarding – (Catalyst 9600)
- High Availability and Disaster Recovery - CCNP Level, Expert Level Preferred
- Vulnerability Management (Scanning for Vulnerabilities and classifying the risk, CIS Benchmark Scanning and compliance) – Using Rapid7
- Knowledge of Penetration Testing, understanding of the types of testing and their advantages and disadvantages
- Security Zone Design and considerations
- Network and Security Architecture Design and Considerations
- Understanding of Information Security (Confidentiality, Integrity, Availability)
- Understanding of MITRE ATT&CK
- Understanding of NIST
- Understanding of SIEM use cases for key controls etc
- Understanding of Risk Management in Cyber Security
- Understanding of SSL Blind spots, what causes them and how to mitigate
- Understanding of Malware/Ransomware and how to mitigate
- Understanding of Penetration testing concepts
- Understanding of White/Black/Grey Box penetration testing.
- Developing Security policies and procedures
- Conducting audits/risk assessments
- Handling crisis situations during security incidents
Information Security Manager employer: Europe Arab Bank
As an Information Security Manager at our company, you will thrive in a dynamic work environment that prioritises innovation and collaboration. We offer competitive benefits, a strong commitment to employee development, and a culture that values strategic thinking and proactive problem-solving. Located in a vibrant area, our team enjoys a supportive atmosphere where your contributions directly impact our security posture and network initiatives.
StudySmarter Expert Advice🤫
We think this is how you could land Information Security Manager
✨Tip Number 1
Network with industry professionals! Attend meetups, webinars, or conferences related to information security and network engineering. This is a great way to make connections and learn about job openings that might not be advertised.
✨Tip Number 2
Showcase your skills through practical demonstrations. If you’ve worked on any projects or have relevant experience, create a portfolio or a presentation to share during interviews. This will help us see your expertise in action!
✨Tip Number 3
Prepare for technical interviews by brushing up on key concepts like risk management, incident response, and network architecture. We want to see that you can think critically and apply your knowledge to real-world scenarios.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who are genuinely interested in joining our team.
We think you need these skills to ace Information Security Manager
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Information Security Manager role. Highlight your experience with ISO27001, NIST, and any relevant network engineering skills. We want to see how your background aligns with our needs!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're the perfect fit for this hybrid role. Share specific examples of your strategic thinking and how you've designed secure architectures in the past.
Showcase Your Technical Skills:Don’t hold back on showcasing your technical skills! Mention your expertise with Palo Alto Firewalls, Cisco switches, and any experience with vulnerability management tools. We love seeing candidates who can hit the ground running!
Apply Through Our Website:We encourage you to apply through our website for a smoother application process. It helps us keep track of your application and ensures you don’t miss out on any important updates from us!
How to prepare for a job interview at Europe Arab Bank
✨Know Your Frameworks
Make sure you’re well-versed in ISO27001, NIST, and CBEST frameworks. Be ready to discuss how you've aligned systems with these standards in your previous roles. This shows you understand the importance of governance in information security.
✨Showcase Your Technical Skills
Prepare to talk about your experience with Palo Alto Firewalls, Cisco ISE, and vulnerability management tools like Rapid7. Bring specific examples of how you've configured and maintained network infrastructure, as this will demonstrate your hands-on expertise.
✨Incident Response Experience
Be prepared to share your experiences in incident response. Discuss a time when you worked with an outsourced partner to investigate a security threat. Highlight your role in containment and what you learned from the situation.
✨Ask Insightful Questions
At the end of the interview, ask questions that show your strategic thinking. Inquire about the company’s current security posture or future initiatives in network engineering. This not only shows your interest but also your understanding of the hybrid nature of the role.
