2 of 2 Information Security Management Jobs in Gloucestershire

The team you'll be working with: The Security Architect will be responsible for the design, implementation and ongoing development of the security architecture of the client's IT systems. The Security Architect will draw upon Enterprise Security Architecture or Security Solutions Architecture to: - Identify business objectives, user needs, risk appetite and cyber security obligations - Identify vulnerabilities, perform threat modelling, undertake risk assessment, evaluate the effectiveness of security controls - Verify and evidence alignment to 'Secure by Design' principles, corporate security policy/standards as well as industry recognised frameworks and best practice What you'll be doing: Develop, deliver and continually enhance a coherent approach to the design of secure client … end-to-end solutions Develop secure conceptual, logical and high level designs by identifying appropriate security controls to be embedded in solutions that meet business requirements whilst evidencing alignment to the target risk appetite. Own the design and be able to articulate and justify design recommendations at security architecture assurance gates Draft design documentation, options papers, risk assessments More ❯

working) Benefits: 27 days holiday plus Wellbeing day,Private Medical Insurance, Bonus scheme, Sharescheme, Enhanced pension plan,Life assurance, Discount scheme. Role Overview: Join a dynamic, international team of Information Security and IT professionals at Spirax Group plc as a Group IT Assurance Manager . Reporting to the Group IT GRC Manager and leading a small team, you … the Group. Acting as a key ambassador for IT assurance and controls, sharing best practices and ensuring delivery of actions. Supporting the maintenance and development of the Group's Information Security Management System (ISMS). Leading compliance assessments and maintaining a central repository of security and compliance documentation. Coaching team members and colleagues on IT General … Controls and assurance practices. Your previous experience is likely to include . Proven experience leading IT assurance programmes. Substantial experience in security assessments and compliance oversight. Familiarity with ISMS and frameworks such as ISO 27001, NIST CSF, CIS Controls, or SCF. Understanding of cloud security, third-party risk, and regulatory standards (e.g., GDPR, UK DPA2018). Experience using More ❯