NEC Software Solutions (NECSWS) is seeking a Cyber Security Manager to join its Information Security team. You will manage security and accreditation for NEC and its customers, producing key documentation, responding to security questionnaires, supporting incident response, and ensuring compliance with standards. The role involves close collaboration with architecture, technology teams, and the Data Protection Officer.
What You'll Do
- Work within the InfoSec team to support its key security activities.
- Provide consistent and qualified responses to tenders and security assurance questionnaires from customers.
- Produce and maintain the security assurance documentation required for accreditation.
- Ensure compliance with relevant security standards, service management procedures, regulations, and industry best practices.
- Schedule security testing and create remediation plans from test reports, seeing remediation through to completion.
- Contribute to process documentation and policy review.
- Conduct security assessments and audits on people, process, and technology within NEC.
- Assist in security incident management and vulnerability management.
- Support the wider InfoSec team in responding to security incidents, ensuring swift closure and root cause analysis.
- Issue security advice and guidance to the rest of the business in line with policies and procedures.
- Support initiatives to develop content for use within the team and for publication to the wider business.
What We're Looking For
- Proven experience working in an IT security role.
- Strong knowledge of cybersecurity frameworks, standards, and regulations.
- A good understanding of an approach to risk management, knowing that context is key.
- Experience in writing comprehensive responses to security questionnaires or bids.
- A strong focus on business outcomes.
- Strong and demonstrated team working experience.
- High degree of personal motivation and ability to self-manage.
- Ability to communicate security and technical solutions to non-technical or security resources internally and externally.
- Comfortable with collaboration, open communication and reaching across a range of functions and teams.
- Excellent verbal and written communication skills.
- Candidates must be security cleared (or able to gain clearance) to Non-Police Personnel Vetting Level 3 (NPPV)+SC.
- On employment the candidate must be able to achieve and maintain NPPV L3+SC clearance.
- Baseline Standard and Disclosure Scotland (BPSS) pre-employment checks required.
Nice to Have
- Delivering pragmatic security assurance documentation aligned to varying degrees of risk appetite.
- Exposure to security testing process and reports such as penetration testing.
- Experience working within a shared environment with multiple tenants and requirements.
- Experience in working on solutions or projects that require formal independent accreditations.
- Working knowledge of Cyber Essentials Plus.
Team & Environment
You will join a diverse InfoSec team comprising of Security Analysts, Security Engineers, and Security Managers. As part of this team, you will work closely with Security Architects and the Data Protection Officer, reporting to the Cyber Assurance Manager.
Benefits & Compensation
- Private Medical Cover funded by NEC for Employees (with the option to add family members at an additional cost).
- 25 days paid holiday with the option to buy/sell (FTE).
- 4 x basic salary life assurance cover funded by NEC (with the option to increase cover at an additional cost).
- A Group Pension Plan with fantastic employer contributions up to a maximum of 8.5%.
- A selection of flexible benefits to suit your individual needs.
- All colleagues get free access to LinkedIn Learning (over 15000 courses).
Work Mode
This role follows a hybrid work model and is based in the UK.
NEC Software Solutions is an equal opportunities employer, welcoming applications from all communities.
