NECSWS is seeking a Cyber Security Manager to join its Information Security team. You will be responsible for managing the delivery of security and accreditation services to the NEC business and our customers. You'll work closely with architecture, technology teams, and the Data Protection Officer to ensure processes are followed and security is maintained.
What You'll Do
- Work within the InfoSec team to support key security activities.
- Provide consistent and qualified responses to tenders and customer assurance questionnaires.
- Produce and maintain security assurance documentation required for accreditation.
- Ensure compliance with relevant security standards, service management procedures, regulations, and industry best practices.
- Schedule security testing and create remediation plans from test reports, seeing remediation through to completion.
- Contribute to process documentation and policy review.
- Conduct security assessments and audits on people, process, and technology within NEC.
- Assist in security incident management and vulnerability management.
- Support the wider InfoSec team in responding to security incidents, ensuring swift closure and root cause analysis.
- Issue security advice and guidance to the rest of the business in line with policies and procedures.
- Support initiatives to develop content for use within the team and for publication to the wider business.
What We're Looking For
- Proven experience working in an IT security role.
- Strong knowledge of cybersecurity frameworks, standards, and regulations.
- A good understanding of an approach to risk management.
- Experience in writing comprehensive responses to security questionnaires or bids.
- A strong focus on business outcomes.
- Candidates must be security cleared (or able to gain clearance) to Non-Police Personnel Vetting Level 3 (NPPV)+SC.
Nice to Have
- Delivering pragmatic security assurance documentation aligned to varying degrees of risk appetite.
- Exposure to security testing process and reports such as penetration testing.
- Experience working within a shared environment with multiple tenants and requirements.
- Experience in working on solutions or projects that require formal independent accreditations.
- Working knowledge of Cyber Essentials Plus.
Team & Environment
You will be part of an InfoSec team comprising Security Analysts, Security Engineers, and Security Managers, working closely with Security Architects and the Data Protection Officer. You will report to the Cyber Assurance Manager.
Benefits & Compensation
- Private Medical Cover funded by NEC for Employees (with the option to add family members at an additional cost).
- 25 days paid holiday with the option to buy/sell.
- 4 x basic salary life assurance cover funded by NEC (with the option to increase cover at an additional cost).
- A Group Pension Plan with fantastic employer contributions up to a maximum of 8.5%.
- A selection of flexible benefits to suit your individual needs.
Work Mode
This position offers a hybrid work model.
NEC Software Solutions is an equal opportunities employer, welcoming applications from all communities.
