Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead security assessments and coordinate audits to enhance information security across the global estate.
- Company: Join a forward-thinking company committed to maintaining top-notch security standards and certifications.
- Benefits: Enjoy flexible working options, professional development opportunities, and a collaborative team culture.
- Why this job: Make a real impact on global security while working with cutting-edge technologies and industry experts.
- Qualifications: A degree and relevant professional qualifications in information security are essential for this role.
- Other info: This position offers a chance to work closely with the CISO and drive significant security initiatives.
The predicted salary is between 48000 - 72000 £ per year.
Key Responsibilities
- To analyse specific security environments across the Group as agreed with the CISO and identify improvements. This will be accomplished through a project life cycle starting by writing a Project Initiation Document (PID) which defines the area to be investigated or evaluated and is completed by agreed documented recommendations with dates for completed remediation, by the relevant identified areas. The role is responsible to ensure completion to an agreed timetable.
- To coordinate regular (quarterly) Infrastructure Reviews in support of certifications under the role’s remit, across the global estate by conducting assessments of the Platforms and Corporate systems. The role is responsible for reports which makes recommendations to the CISO to minimise any identified risks, obtain an agreed timetable for remediation (entered in to the Compliance Calendar) and ensure any work is completed to the timetable.
- To work closely with the CISO and Quality and Compliance Executive to provide assurance that policies and procedures for Information Security are effective and are adhered to by sampling different areas across the global business (performing internal audits or ensuring they are performed as appropriate). To maintain a list of areas for consideration and sample at least two areas each quarter. As a result of the sampling, use the findings to be proactive in making recommendations for updates to policies and procedures, as required.
- To liaise with agreed external security agencies (where required) and ensure that any information requested is provided on a timely and secure basis.
- To keep up to date with security trends, threats and control measures.
- To perform such duties appropriate to the role, as may be directed by the CISO.
Policies, Processes and Procedures
- To ensure relevant policies, processes and procedures are up to date and posted onto the Business Management System (BMS) in accordance with internal processes. To provide and/or design training and awareness sessions on policies, processes and procedures as relevant and agreed with the CISO.
ISO Certifications
- To take responsibility for the continued achievement of ISO27001 and ISO9001 certifications for the UK and any other certifications as directed by the CISO from time to time. Responsibility includes the implementation of recommendations, driving external and internal audit requirements/outputs and ensuring arrangements for certification are made and prepared for fully.
- To support the Quality and Compliance Executive in ensuring the required Certifications are maintained across the Global landscape. The role will produce monthly reports for presentation to the CISO on those items covered by the certification that are required for examination by the internal and external auditors. The jobholder is to take responsibility for ensuring that the timing and preparation for audit visits which may be co-ordinated and arranged by the Quality and Compliance Executive are entered in the Compliance Calendar.
- To provide support and consultation to the CISO as required across other certifications.
Misc Duties in Support and Conjunction with CISO
- To undertake projects, tender responses and other information security actions in support of the CISO team and Business objectives and plans.
- A good standard of education degree level is a must.
- Professional industry qualifications are also sought.
#J-18808-Ljbffr
Head of Information Security employer: JAM IT Consultancy Ltd
Contact Detail:
JAM IT Consultancy Ltd Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Head of Information Security
✨Tip Number 1
Familiarise yourself with ISO27001 and ISO9001 standards, as these are crucial for the role. Understanding the requirements and processes involved in maintaining these certifications will give you a significant edge during discussions with our CISO.
✨Tip Number 2
Stay updated on the latest security trends and threats. Being knowledgeable about current issues in information security will not only help you in interviews but also demonstrate your proactive approach to the role.
✨Tip Number 3
Network with professionals in the information security field. Engaging with industry peers can provide insights into best practices and may even lead to recommendations or referrals that could benefit your application.
✨Tip Number 4
Prepare to discuss your experience with internal audits and compliance checks. Highlighting specific examples of how you've successfully managed these processes in the past will showcase your suitability for the role.
We think you need these skills to ace Head of Information Security
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in information security, project management, and compliance. Use specific examples that demonstrate your ability to analyse security environments and implement improvements.
Craft a Strong Cover Letter: In your cover letter, address the key responsibilities outlined in the job description. Explain how your background aligns with the role, particularly your experience with ISO certifications and working closely with CISO teams.
Showcase Relevant Qualifications: List any professional industry qualifications you possess that are relevant to information security. This could include certifications like ISO27001 or ISO9001, as well as any other relevant training that supports your application.
Demonstrate Continuous Learning: Mention any recent courses, workshops, or seminars you've attended related to security trends and control measures. This shows your commitment to staying updated in the field and your proactive approach to professional development.
How to prepare for a job interview at JAM IT Consultancy Ltd
✨Understand the Role Thoroughly
Before the interview, make sure you have a deep understanding of the responsibilities outlined in the job description. Familiarise yourself with terms like Project Initiation Document (PID), ISO certifications, and compliance processes. This will help you answer questions confidently and demonstrate your knowledge.
✨Prepare for Scenario-Based Questions
Expect to be asked about specific scenarios related to information security. Prepare examples from your past experience where you've successfully identified risks, implemented security measures, or coordinated audits. Use the STAR method (Situation, Task, Action, Result) to structure your responses.
✨Showcase Your Continuous Learning
The field of information security is always evolving. Be ready to discuss how you keep up with the latest trends, threats, and control measures. Mention any relevant courses, certifications, or industry publications you follow to show your commitment to professional development.
✨Demonstrate Collaboration Skills
This role requires working closely with the CISO and other executives. Be prepared to discuss your experience in collaborating with different teams and stakeholders. Highlight instances where your communication and teamwork led to successful project outcomes or improved security measures.
