Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Manage daily information security and lead incident response efforts.
- Company: Join a dynamic law firm focused on enhancing IT security.
- Benefits: Competitive salary, flexible hours, and opportunities for professional growth.
- Why this job: Be at the forefront of cybersecurity in a collaborative environment.
- Qualifications: CISSP or CISSM certification required; GDPR knowledge essential.
- Other info: Initial 3-month FTC based in Canary Wharf with occasional travel.
The predicted salary is between 39000 - 52000 £ per year.
Job Description
Reporting to the CIO, you will be responsible for managing the day-to-day information security at the firm. Working closely with third-party providers, you will ensure the day-to-day IT security suppliers perform to expectations.
You will take part in ongoing and upcoming improvement projects, working through the implications within hardware and software changes and upgrades, cyber security risk analysis, and information security policies.
You will lead in the incident response to any information security breach, working closely with the rest of the IT Team, as well as risk and compliance functions.
Previous law firm experience is advantageous.
- Line management of the Information Security Analyst.
- Uses experience and best practice to provide authoritative advice and guidance on the requirements for security controls in collaboration with experts in other functions (e.g., legal, technical support). Ensures architectural principles are applied during design to reduce risk and drives adoption and adherence to policy, standards, and guidelines.
- Maintains and manages the Security Incident Response plans and affected processes.
- Responsibility for oversight of information security initiatives, including audit action points.
- Assesses risks to the availability, integrity, and confidentiality of the firm’s systems. Coordinates the planning, designing, testing of maintenance procedures and contingency plans to address exposure to risk and ensure that agreed levels of continuity are maintained.
- Works with external security providers to proactively maintain a secure environment. Delivers projects in collaboration with other IT Team members to further improve the security posture of the firm.
- Proven track record of delivering security improvements to time, cost, and quality controls.
- CISSP or CISSM certification essential.
- Thorough understanding of GDPR essential; related qualifications desirable.
- ISO 27001 accreditation and experience of implementing such advantageous.
- Knowledge of Microsoft Intune, Group Policy, and Windows 10 Security; DMARC implementation advantageous.
- Excellent knowledge of MS Office; working knowledge of program/project management software (Basecamp, MS Project, etc.). Knowledge of professional services and partnership environments advantageous.
- Normal office hours are 9:30 am until 5:30 pm, flexibility required. Based in Canary Wharf with occasional travel to central London.
- This is an initial 3-month FTC. Salary is circa £65k (will be on pro-rata).
- Must be UK based.
#J-18808-Ljbffr
Information Security Manager (FTC) employer: ZipRecruiter
Contact Detail:
ZipRecruiter Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Security Manager (FTC)
✨Tip Number 1
Familiarize yourself with the specific security frameworks and standards mentioned in the job description, such as CISSP, GDPR, and ISO 27001. Being able to discuss these frameworks in detail during your interview will demonstrate your expertise and commitment to information security.
✨Tip Number 2
Highlight any previous experience you have working in a law firm or similar professional services environment. This background can set you apart from other candidates, as it shows you understand the unique challenges and requirements of information security in that context.
✨Tip Number 3
Prepare to discuss specific incidents where you successfully managed information security breaches or improved security protocols. Use the STAR method (Situation, Task, Action, Result) to structure your responses, showcasing your problem-solving skills and ability to lead under pressure.
✨Tip Number 4
Network with professionals in the information security field, especially those who have experience in legal environments. Engaging with industry groups or forums can provide valuable insights and connections that may help you during the application process.
We think you need these skills to ace Information Security Manager (FTC)
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in information security, particularly in a law firm environment. Emphasize your certifications like CISSP or CISSM and any experience with GDPR and ISO 27001.
Craft a Strong Cover Letter: In your cover letter, explain why you are passionate about information security and how your previous experiences align with the responsibilities outlined in the job description. Mention specific projects or improvements you've led in the past.
Showcase Technical Skills: Clearly list your technical skills related to Microsoft Intune, Group Policy, Windows 10 Security, and any project management software you are familiar with. This will demonstrate your capability to handle the technical aspects of the role.
Highlight Leadership Experience: If you have experience managing teams or leading projects, make sure to highlight this in your application. Discuss how you have successfully guided teams through security initiatives or incident responses.
How to prepare for a job interview at ZipRecruiter
✨Showcase Your Security Expertise
Make sure to highlight your experience with information security, especially in a law firm setting. Discuss specific projects where you improved security measures and how you managed risks effectively.
✨Understand GDPR and Compliance
Since a thorough understanding of GDPR is essential for this role, be prepared to discuss your knowledge and experience with data protection regulations. Share examples of how you've implemented compliance measures in previous positions.
✨Demonstrate Leadership Skills
As you'll be managing the Information Security Analyst, it's important to showcase your leadership abilities. Talk about your experience in leading teams, managing incidents, and collaborating with other departments to enhance security protocols.
✨Familiarize Yourself with Tools and Technologies
Be ready to discuss your knowledge of tools like Microsoft Intune, Group Policy, and Windows 10 Security. If you have experience with DMARC implementation or project management software, mention that as well to show your technical proficiency.
