IT Cyber Security Manager

IT Cyber Security Manager

Posted 2 weeks ago by NES IT on JobServe

Apply
Negotiable
Undetermined
Remote
Remote work , UK
Apply
AWS Identity And Access Management (IAM) Business Process Certified Ethical Hacker (CEH) Certified Information Security Manager (CISM) Certified Information Systems Security Professional (CISSP) Cloud Computing Cloud Technology Computer Science Corporate Governance Of Information Technology Cross-Functional Integration Cyber Incident Response Cyber Security Cyber Security Management Cyber Security Policies Data Encryption Data Loss Prevention Digital Forensics Encryption Endpoint Security Identity And Access Management Information Technology Investments IT Security Architecture Malware Analysis Management Management Effectiveness Market Trend MITRE ATT&CK Framework Operational Technology (OT) Security Penetration Testing Risk Management Risk Mitigation Security Information And Event Management (SIEM) Security Strategies Stakeholder Engagement Stakeholder Management Strategic Leadership

Summary: The IT Cyber Security Manager will lead the cybersecurity function within the organization, focusing on protecting critical IT and OT infrastructure. This role combines hands-on technical expertise with strategic leadership to develop and enforce robust cybersecurity policies and frameworks. The manager will collaborate with various stakeholders to ensure compliance and effective incident response while staying updated on the latest cybersecurity trends. The position requires occasional business trips to the Middle East.

Key Responsibilities:

  • Support all aspects of IT and OT security strategy.
  • Act as the subject matter expert (SME) on cybersecurity risk management, guiding leadership on security investments and risk mitigation strategies.
  • Lead the development and implementation of cybersecurity policies, procedure, and standards aligned with industry frameworks and industry best practices.
  • Design and implement Defence-in-Depth security architecture, ensuring multiple layers of security across IT and OT environments.
  • Conduct regular risk assessments and audits to identify and mitigate vulnerabilities in IT and OT systems.
  • Manage cybersecurity monitoring, detection, and response capabilities to mitigate threats.
  • Ensure compliance with local regulatory requirements, DLP obligations, and international cybersecurity frameworks.
  • Develop and execute cybersecurity awareness training programs for Organisation employees.
  • Collaborate with internal and external stakeholders, to establish and enforce security measures.
  • Oversee incident response planning and execution to ensure timely and effective management of cybersecurity incidents.
  • Aligned with Organisational growth, build a team of cybersecurity professionals, providing guidance and support to enhance their skills and performance.
  • Collaborate with IT teams to secure cloud, network, and endpoint environments, implementing access control and encryption strategies.
  • Participate in Ethics & Compliance Committees and IT Governance Forums, ensuring security is Embedded in all IT and business processes.
  • Collaborate with the IT Security team and NOC on cybersecurity initiatives, ensuring alignment with corporate policies and global threat intelligence.
  • Work closely with procurement teams to review security requirements in vendor contracts and third-party risk assessments.
  • Stay current with the latest cybersecurity trends, threats, and technologies to ensure the organisation's security posture is up to date.
  • Lead security governance, incident response, and forensic investigations when required.
  • Provide technical mentorship and training to NOC and security teams.

Key Skills:

  • Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related discipline.
  • Experience working in the oil and gas industry or with industrial control systems (ICS) and knowledge of specific cybersecurity threats and challenges faced by the energy sector.
  • Professional certifications such as CISSP, CISM, CEH, or GIAC (GSEC, GCIH, GCIA) preferred.
  • Extensive hands-on experience in cybersecurity operations, threat intelligence, and incident response.
  • Strong knowledge of NIST CSF, ISO 27001, MITRE ATT&CK, and Defence-in-Depth security models.
  • Experience with Firewalls, SIEM solutions, endpoint security, identity and access management (IAM), and cloud security controls.
  • Ability to perform penetration testing, digital forensics, and malware analysis.
  • Proven track record in leading security audits, risk assessments, and compliance reporting.
  • Proven track record of developing and implementing cybersecurity policies and frameworks.
  • Strong leadership skills with experience in mentoring and developing cybersecurity talent.
  • Excellent communication and stakeholder management skills, particularly in cross-functional integration with IT, operations, and executive teams.
  • Strong problem-solving skills and the ability to work under pressure.
  • Strong Team player with demonstrated ability in consensus building to ensure excellent stakeholder engagement, alignment and ethical decision-making.

Salary (Rate): undetermined

City: undetermined

Country: UK

Working Arrangements: remote

IR35 Status: undetermined

Seniority Level: undetermined

Industry: IT

Apply
Similar Jobs
Loading data...