Information Systems & Security Manager

Requirfed for a fully remote, permanent position, an experienced Information Systems and Security Manager to take responsibility for a digital transformation initiative, while ensuring robust information security and availability across all platforms.

Role:

- Ensure the availability, reliability, continuous improvement and security of IT systems.

- Lead information security compliance initiatives in line with standards such as ISO27001, PCI DSS, Cyber Essentials Plus, and GDPR.

- Effective stakeholder management, together with third-party service providers, is vital.

- Maintain a strategic perspective, comprehending the interconnectivity of systems and services within the organisation.

- Cyber security is a core responsibility, encompassing the implementation and ongoing management of security frameworks like Cyber Essentials Plus and ISO27001.

Experience:

The ideal candidate will possess broad IT expertise, with hands-on experience across areas including SaaS applications, cloud hosting, Microsoft M365, Customer Relationship Management, and Content Management systems.

Key Responsibilities:

• Coordinate closely with the Managed Service Provider (MSP) to ensure alignment with ITIL standards.
• Serve as the escalation contact for urgent, significant, or disputed IT issues.
• Lead and direct IT incident responses, collaborating with the MSP, third parties etc.
• Design and introduce processes and innovations to improve efficiency, reduce risks, and maintain cyber security.

• Collaborate with suppliers to manage, support, and develop cloud systems and integrations:
  • Microsoft 365 (including SharePoint)
  • HubSpot CRM
  • Xero accounting
  • Auditing/assessment platform
  • Field service platform
• Oversee the ongoing maintenance and development of the Information Security Management System documentation, including all policies, procedures, and protocols necessary to meet organisational security standards and certification requirements.
• Design and implement procedures for risk and compliance incident reporting, as well as comprehensive incident management plans.
• Serve as the primary contact for data protection matters, ensuring organisation-wide compliance with GDPR.

To arrange an interview, please email in the first instance, your CV to (see below)

WA Consultants is an Employment Business and an Employment Agency as described within The Conduct of Employment Agencies and Employment Businesses Regulations 2003.