Information Security Manager

Information Security Manager - CISM, CISSP, CEH, ISO27001

Our leading international law firm client are currently in need of a new Information Security Manager (CISM, CISSP, CEH, ISO27001) to join them on a permanent basis, this role will oversee all aspects of the firms Information Security Management Systems, this includes policy management, compliance monitoring, risk management auditing, and the continuous improvement to ensure ISO27001 standards are met.

This is a fantastic opportunity to join a highly prestigious firm who are well known for having highly collaborative environments, offer great deals of technical exposure and career growth, and invest heavily into modern technology.

To be considered for this Information Security Manager (CISM, CISSP, CEH, ISO27001) role, it's ideal you have:

• A minimum of 3+ years' working in an Information Security Management role in a law firm or other regulated professional services environment
• Strong track record of leading and managing an ISMS including risk management, audit and continuous improvement
• Proven experience applying risk management frameworks and leading risk-based assessments, including delivering executive reports with recommended actions and risk treatments
• Proven experience in policy governance, delivering awareness programmes and cyber incident response practices
• Proven experience responding to client audits, supporting pitch documentation, and engaging with cyber insurers
• Proven experience building and maintaining strong cross-functional partnerships with operational teams to uphold and enhance the information security team’s reputation and influence within the firm
• Experience with data subject access requests
• Experience managing, mentoring, and developing information security teams within a professional services setting
• Recognised professional qualifications in information security (e.g. CISM, CISSP, ISO 27001 Lead Implementer/Auditor)