Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead security analysis and improvements across the Group, ensuring timely completion of projects.
- Company: Join a global leader in information security committed to excellence and innovation.
- Benefits: Enjoy competitive pay, professional development opportunities, and a collaborative work environment.
- Why this job: Make a real impact on security policies while working with top professionals in the field.
- Qualifications: A degree and relevant industry certifications are essential for this role.
- Other info: Be part of a dynamic team that values proactive security measures and continuous improvement.
The predicted salary is between 48000 - 72000 £ per year.
Key Responsibilities
- To analyse specific security environments across the Group as agreed with the CISO and identify improvements. This will be accomplished through a project life cycle starting by writing a Project Initiation Document (PID) which defines the area to be investigated or evaluated and is completed by agreed documented recommendations with dates for completed remediation, by the relevant identified areas. The role is responsible to ensure completion to an agreed timetable.
- To coordinate regular (quarterly) Infrastructure Reviews in support of certifications under the role’s remit, across the global estate by conducting assessments of the Platforms and Corporate systems. The role is responsible for reports which makes recommendations to the CISO to minimise any identified risks, obtain an agreed timetable for remediation (entered in to the Compliance Calendar) and ensure any work is completed to the timetable.
- To work closely with the CISO and Quality and Compliance Executive to provide assurance that policies and procedures for Information Security are effective and are adhered to by sampling different areas across the global business (performing internal audits or ensuring they are performed as appropriate). To maintain a list of areas for consideration and sample at least two areas each quarter. As a result of the sampling, use the findings to be proactive in making recommendations for updates to policies and procedures, as required.
- To liaise with agreed external security agencies (where required) and ensure that any information requested is provided on a timely and secure basis.
- To keep up to date with security trends, threats and control measures.
- To perform such duties appropriate to the role, as may be directed by the CISO.
Policies, Processes and Procedures
- To ensure relevant policies, processes and procedures are up to date and posted onto the Business Management System (BMS) in accordance with internal processes. To provide and/or design training and awareness sessions on policies, processes and procedures as relevant and agreed with the CISO.
ISO Certifications
- To take responsibility for the continued achievement of ISO27001 and ISO9001 certifications for the UK and any other certifications as directed by the CISO from time to time. Responsibility includes the implementation of recommendations, driving external and internal audit requirements/outputs and ensuring arrangements for certification are made and prepared for fully.
- To support the Quality and Compliance Executive in ensuring the required Certifications are maintained across the Global landscape. The role will produce monthly reports for presentation to the CISO on those items covered by the certification that are required for examination by the internal and external auditors. The jobholder is to take responsibility for ensuring that the timing and preparation for audit visits which may be co-ordinated and arranged by the Quality and Compliance Executive are entered in the Compliance Calendar.
- To provide support and consultation to the CISO as required across other certifications.
Misc Duties in Support and Conjunction with CISO
- To undertake projects, tender responses and other information security actions in support of the CISO team and Business objectives and plans.
- A good standard of education degree level is a must.
- Professional industry qualifications are also sought.
#J-18808-Ljbffr
Head of Information Security employer: JAM IT Consultancy Ltd
Contact Detail:
JAM IT Consultancy Ltd Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Head of Information Security
✨Tip Number 1
Familiarize yourself with ISO27001 and ISO9001 standards, as these certifications are crucial for the role. Understanding the requirements and processes involved will help you demonstrate your expertise during discussions with the CISO.
✨Tip Number 2
Stay updated on the latest security trends and threats in the industry. This knowledge will not only enhance your credibility but also allow you to make informed recommendations that align with the company's security objectives.
✨Tip Number 3
Network with professionals in the information security field, especially those who have experience with internal audits and compliance. Building these connections can provide valuable insights and may even lead to referrals.
✨Tip Number 4
Prepare to discuss your experience with project management, particularly in relation to security initiatives. Highlighting your ability to manage timelines and deliver results will be key in showcasing your fit for this leadership role.
We think you need these skills to ace Head of Information Security
Some tips for your application 🫡
Understand the Role: Make sure to thoroughly read the job description for the Head of Information Security position. Understand the key responsibilities and required qualifications, as this will help you tailor your application effectively.
Highlight Relevant Experience: In your CV and cover letter, emphasize your experience with security environments, project management, and compliance certifications like ISO27001 and ISO9001. Use specific examples that demonstrate your ability to analyze security risks and implement effective solutions.
Showcase Your Skills: Clearly outline your skills related to information security, risk management, and policy development. Mention any relevant professional industry qualifications you hold, as these are sought after for this role.
Craft a Strong Cover Letter: Write a compelling cover letter that connects your background to the responsibilities outlined in the job description. Discuss how your proactive approach to security trends and your experience with internal audits can benefit the company.
How to prepare for a job interview at JAM IT Consultancy Ltd
✨Understand the Project Lifecycle
Make sure you are familiar with the project lifecycle, especially how to write a Project Initiation Document (PID). Be prepared to discuss your experience in analyzing security environments and how you've identified improvements in past roles.
✨Showcase Your Audit Experience
Highlight any experience you have with conducting internal audits or coordinating external audits. Be ready to explain how you ensure compliance with policies and procedures and how you’ve made recommendations based on audit findings.
✨Stay Updated on Security Trends
Demonstrate your knowledge of current security trends, threats, and control measures. Discuss how you keep yourself informed and how this knowledge has influenced your previous work in information security.
✨Prepare for ISO Certification Discussions
Be prepared to talk about your experience with ISO27001 and ISO9001 certifications. Discuss how you have contributed to maintaining these certifications and any challenges you faced during audits or compliance checks.
