Cyber Security Manager

Venn Group is excited to being working with the London Borough of Harrow to recruit a permanent Cyber Security Manager.

This post will act as the lead for cyber security across the Council, safeguarding critical ICT infrastructure, sensitive resident data, and council services from cyber threats. This includes leading incident response, ensuring compliance with national standards, and embedding cyber resilience across all Council operations.

Employment type: Permanent

Salary: £65,544 – £72,693

Location: Harrow, London

Hybrid working is required, with the team attending the office on average 3 days a week.

Responsibilities in post:

• Design and deliver integrated security solutions covering people, processes, and technology
• Lead the development and implementation of all security policies, processes, and standards to safeguard Council technology, information systems, and ICT eco systems
• Ensure secure configuration of cloud and hybrid environments (Microsoft 365, Azure), and oversee patch management, disaster recovery, and business continuity testing
• Manage and oversee a Cyber Security Analyst
• Provide technical oversight across SIEM, firewalls, endpoint protection, and IAM
• Monitor systems for risks, including data breaches and gaps in security mechanisms, and implement corrective measures
• Develop and apply a standard testing approach that prioritises user experience for all major initiatives
• Communicate security processes effectively to ensure compliance across all Council services
• Ensure compliance with external standards and frameworks such as PCI-DSS, HSCN (N3), DSP Toolkit, PSN and Cyber Essentials Plus
• Monitor and maintain PSN compliance, including annual health checks, responding to security breaches, and ensuring appropriate reporting and remediation activities with service providers
• Monitor and maintain PCI-DSS compliance, including quarterly ASV scans, annual audits, and submissions, while managing responses to data breaches and ensuring corrective actions
• Collaborate with the ICT Platform Manager, Service Delivery Managers, and Enterprise Architect to embed cybersecurity by design within Council change governance
• Work with business units and outsourced service providers to maintain appropriate procedures and controls, ensuring regular scans are conducted and vulnerabilities remediated
• Plan and implement security measures across all information systems and networks and review designs for new projects to ensure they are implemented based on guidelines

Essential skills and experience:

• Cyber security management within public sector, regulated environments, or large-scale private
• Strong compliance background across Private or Public Sector, including following end-to-end processes: PSN, PCI-DSS, Cyber Essentials, NHS DSP, and DWP MOU
• Hands-on expertise with Microsoft E5 security and compliance tools
• Extensive experience with Microsoft Sentinel, including configuration, monitoring and security automation (SOAR)
• Knowledge and experience of working in ITIL environments

Hiring Process:

• Introductory call/meeting with Venn Group, to discuss your experience and the role
• 3-stage interview process with the client, first on Teams the next two in person

To be considered for this position and for further information on this and other roles please apply and reach out to the Venn Group Local Government division in our London office.