At a Glance
- Tasks: Manage information security and support network engineering initiatives in a hybrid role.
- Company: Join a forward-thinking IT team focused on security and innovation.
- Benefits: Competitive salary, flexible working options, and opportunities for professional growth.
- Other info: Dynamic role with potential for career advancement and leadership opportunities.
- Why this job: Make a real impact by safeguarding our digital landscape and enhancing network security.
- Qualifications: Expertise in information security frameworks and network management required.
The predicted salary is between 60000 - 80000 £ per year.
We are seeking a dual expertise professional to manage our information security posture while also providing support for network engineering initiatives assisting the network team. This hybrid role requires a strategic thinker who can design secure architectures, implement defensive controls, and support our core network and security infrastructure. This role will report into the Head of IT and will be part of the IT management team. This role will on occasion be required to deputise for the Head of IT and be on the IT duty manager on call rota.
Key Responsibilities
- Information Security Management
- Framework Governance: Align systems with ISO27001, NIST and CBEST frameworks.
- Risk Assessment: Review new service implementations both on prem and cloud based and ensure systems and services comply with our security standards.
- Risk Mitigation: Conduct regular vulnerability scans and coordinate external penetration testing.
- Incident Response: Work with our outsourced partner on the investigation and containment of active security threats.
- Monitoring: Work with our outsourced partner to ensure 100% SIEM coverage of all IT assets.
- Compliance & Policy: Create, update and enforce corporate information security policies.
- Network Management
- Infrastructure Design: Architecture of resilient LAN, WAN and VPN environments.
- Hardware Lifecycle: Configure and maintain routers, switches and firewalls.
- Disaster Recovery: Maintain automated backup systems and network failover protocols.
Required Skills and Knowledge
- Palo Alto Firewalls – Specialist Level, Architect Level Preferred
- Network Access Control including Cisco ISE, TACACS etc.
- Network Detection and Response
- Network Zero Day (Trellix NX or similar)
- Host Zero Day (Trellix HX or similar)
- Cyber Security Network Control Incident Investigation with the assistance of group cyber security experts – Tier 1, Tier 2 to 3 preferred, using LogRhythm SIEM a bonus
- Host End Point Protection (Symantec)
- Cisco Network Switches Layer 2 and 3 (Catalyst 9K) – CCNP Level, Expert Level Preferred
- Routing protocol – OSPF (Catalyst 9K) – CCNP Level, Expert Level Preferred
- Cisco Switch Stacking (Cat 9K Switches 9600, 9300, 9200)
- Virtual Routing and Forwarding – (Catalyst 9600)
- High Availability and Disaster Recovery - CCNP Level, Expert Level Preferred
- Vulnerability Management (Scanning for Vulnerabilities and classifying the risk, CIS Benchmark Scanning and compliance) – Using Rapid7
- Knowledge of Penetration Testing, understanding of the types of testing and their advantages and disadvantages
- Security Zone Design and considerations
- Network and Security Architecture Design and Considerations
- Understanding of Information Security (Confidentiality, Integrity, Availability)
- Understanding of MITRE ATT&CK
- Understanding of NIST
- Understanding of SIEM use cases for key controls etc
- Understanding of Risk Management in Cyber Security
- Understanding of SSL Blind spots, what causes them and how to mitigate
- Understanding of Malware/Ransomware and how to mitigate
- Understanding of Penetration testing concepts
- Understanding of White/Black/Grey Box penetration testing.
- Developing Security policies and procedures
- Conducting audits/risk assessments
- Handling crisis situations during security incidents
Information Security Manager in London employer: Europe Arab Bank
As an Information Security Manager at our company, you will thrive in a dynamic work environment that prioritises innovation and collaboration. We offer competitive benefits, a strong commitment to employee development, and a culture that values strategic thinking and proactive problem-solving. Located in a vibrant area, our team enjoys a supportive atmosphere where your contributions directly impact our security posture and network initiatives.
StudySmarter Expert Advice🤫
We think this is how you could land Information Security Manager in London
✨Tip Number 1
Network with industry professionals! Attend meetups, webinars, or conferences related to information security and network management. This is a great way to make connections and learn about job openings that might not be advertised.
✨Tip Number 2
Showcase your skills in practical ways. Consider creating a portfolio that highlights your projects, such as secure architecture designs or incident response case studies. This can really set you apart during interviews!
✨Tip Number 3
Prepare for technical interviews by brushing up on key concepts like ISO27001, NIST, and vulnerability management. We recommend doing mock interviews with friends or using online platforms to get comfortable with the format.
✨Tip Number 4
Don’t forget to apply through our website! We’re always looking for talented individuals who can help us enhance our information security posture and support our network initiatives. Your next big opportunity could be just a click away!
We think you need these skills to ace Information Security Manager in London
Some tips for your application 🫡
Tailor Your CV:Make sure your CV speaks directly to the role of Information Security Manager. Highlight your experience with ISO27001, NIST, and any relevant security frameworks. We want to see how your skills align with our needs!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're the perfect fit for this hybrid role. Share specific examples of your past work in information security and network management that demonstrate your strategic thinking.
Showcase Your Technical Skills:Don’t hold back on listing your technical expertise! Mention your experience with Palo Alto Firewalls, Cisco switches, and vulnerability management tools. We’re looking for someone who can hit the ground running, so make it clear you’ve got the chops.
Apply Through Our Website:We encourage you to apply through our website for a smoother process. It helps us keep track of applications and ensures you don’t miss out on any important updates. Plus, we love seeing applications come in directly from our site!
How to prepare for a job interview at Europe Arab Bank
✨Know Your Frameworks
Make sure you’re well-versed in ISO27001, NIST, and CBEST frameworks. Be ready to discuss how you've aligned systems with these standards in your previous roles. This shows you understand the importance of governance in information security.
✨Showcase Your Technical Skills
Prepare to talk about your experience with Palo Alto Firewalls, Cisco ISE, and vulnerability management tools like Rapid7. Bring specific examples of how you've configured and maintained network hardware or conducted risk assessments to demonstrate your hands-on expertise.
✨Incident Response Experience
Be ready to share your experiences dealing with security incidents. Discuss how you’ve worked with external partners for threat investigation and containment. Highlighting your proactive approach to incident response will show you can handle high-pressure situations.
✨Design Resilient Architectures
Think about examples where you’ve designed secure network architectures. Be prepared to explain your thought process behind creating resilient LAN, WAN, and VPN environments. This will illustrate your strategic thinking and ability to support both security and network engineering initiatives.
