Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead security analysis and improvements across the Group, ensuring timely completion of projects.
- Company: Join a global leader committed to maintaining top-notch information security standards.
- Benefits: Enjoy a dynamic work environment with opportunities for professional growth and certifications.
- Why this job: Make a real impact on security policies while collaborating with industry experts.
- Qualifications: A degree and relevant professional qualifications in information security are essential.
- Other info: Be part of a team that values innovation and proactive security measures.
The predicted salary is between 54000 - 84000 £ per year.
Key Responsibilities To analyse specific security environments across the Group as agreed with the CISO and identify improvements. This will be accomplished through a project life cycle starting by writing a Project Initiation Document (PID) which defines the area to be investigated or evaluated and is completed by agreed documented recommendations with dates for completed remediation, by the relevant identified areas. The role is responsible to ensure completion to an agreed timetable. To coordinate regular (quarterly) Infrastructure Reviews in support of certifications under the role’s remit, across the global estate by conducting assessments of the Platforms and Corporate systems. The role is responsible for reports which makes recommendations to the CISO to minimise any identified risks, obtain an agreed timetable for remediation (entered in to the Compliance Calendar) and ensure any work is completed to the timetable. To work closely with the CISO and Quality and Compliance Executive to provide assurance that policies and procedures for Information Security are effective and are adhered to by sampling different areas across the global business (performing internal audits or ensuring they are performed as appropriate). To maintain a list of areas for consideration and sample at least two areas each quarter. As a result of the sampling, use the findings to be proactive in making recommendations for updates to policies and procedures, as required. To liaise with agreed external security agencies (where required) and ensure that any information requested is provided on a timely and secure basis. To keep up to date with security trends, threats and control measures. To perform such duties appropriate to the role, as may be directed by the CISO. Policies, Processes and Procedures To ensure relevant policies, processes and procedures are up to date and posted onto the Business Management System (BMS) in accordance with internal processes. To provide and/or design training and awareness sessions on policies, processes and procedures as relevant and agreed with the CISO. ISO Certifications To take responsibility for the continued achievement of ISO27001 and ISO9001 certifications for the UK and any other certifications as directed by the CISO from time to time. Responsibility includes the implementation of recommendations, driving external and internal audit requirements/outputs and ensuring arrangements for certification are made and prepared for fully. To support the Quality and Compliance Executive in ensuring the required Certifications are maintained across the Global landscape. The role will produce monthly reports for presentation to the CISO on those items covered by the certification that are required for examination by the internal and external auditors. The jobholder is to take responsibility for ensuring that the timing and preparation for audit visits which may be co-ordinated and arranged by the Quality and Compliance Executive are entered in the Compliance Calendar. To provide support and consultation to the CISO as required across other certifications. Misc Duties in Support and Conjunction with CISO To undertake projects, tender responses and other information security actions in support of the CISO team and Business objectives and plans. A good standard of education degree level is a must. Professional industry qualifications are also sought. #J-18808-Ljbffr
Head of Information Security employer: JAM IT Consultancy Ltd
Contact Detail:
JAM IT Consultancy Ltd Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Head of Information Security
✨Tip Number 1
Familiarize yourself with the ISO27001 and ISO9001 standards, as these certifications are crucial for the role. Understanding the requirements and processes involved will help you demonstrate your expertise during discussions with the CISO.
✨Tip Number 2
Stay updated on the latest security trends and threats in the industry. This knowledge will not only enhance your credibility but also allow you to make informed recommendations that align with the company's security objectives.
✨Tip Number 3
Network with professionals in the information security field, especially those who have experience with internal audits and compliance. Building these connections can provide valuable insights and may even lead to referrals for the position.
✨Tip Number 4
Prepare to discuss your experience with project management, particularly in relation to security assessments and remediation plans. Highlighting your ability to manage timelines and coordinate with various stakeholders will be key in showcasing your fit for this role.
We think you need these skills to ace Head of Information Security
Some tips for your application 🫡
Understand the Role: Make sure you thoroughly understand the responsibilities of the Head of Information Security position. Highlight your experience with project management, security assessments, and compliance certifications in your application.
Tailor Your CV: Customize your CV to reflect relevant experiences that align with the job description. Emphasize your skills in analyzing security environments, coordinating audits, and maintaining ISO certifications.
Craft a Strong Cover Letter: Write a compelling cover letter that outlines your motivation for applying and how your background fits the role. Mention specific examples of past projects or initiatives that demonstrate your capability in information security.
Highlight Continuous Learning: Showcase your commitment to staying updated on security trends and threats. Mention any recent training, certifications, or industry events you have attended that relate to information security.
How to prepare for a job interview at JAM IT Consultancy Ltd
✨Understand the Project Lifecycle
Make sure you are familiar with the project lifecycle, especially how to write a Project Initiation Document (PID). Be prepared to discuss your experience in managing projects and how you've identified improvements in security environments.
✨Showcase Your Audit Experience
Highlight any experience you have with conducting internal audits or assessments. Be ready to provide examples of how you've made recommendations based on your findings and how those led to improved compliance and security.
✨Stay Updated on Security Trends
Demonstrate your knowledge of current security trends, threats, and control measures. Discuss how you keep yourself informed and how this knowledge has influenced your previous work in information security.
✨Prepare for ISO Certification Discussions
Be prepared to talk about your experience with ISO27001 and ISO9001 certifications. Discuss how you've contributed to maintaining these certifications and any challenges you've faced during audits.
