Logo of Huzzle

Senior Manager Security Compliance

  • Job
    Full-time
    Expert Level
  • IT & Cybersecurity
  • London
  • Quick Apply

AI generated summary

  • You should have key certifications (CISM, CISSP, CRISC), ISO 27001 experience, strong risk assessment skills, legal knowledge, and the ability to communicate effectively with diverse stakeholders.
  • You will manage ISO 27001 certification, oversee non-conformities, develop risk assessments, enhance security culture, and brief leadership on cybersecurity progress and threats.

Requirements

  • Certified Information Security Manager (CISM)/ Certified Information Systems Security Professional (CISSP)/ Certified in Risk and Information Systems Control (CRISC)
  • ISO 27001 Lead Implementer or Lead Auditor
  • Experience of delivering and maintaining an ISO 27001 programme
  • Extensive experience and knowledge of best practice information security controls and the potential impact of controls on business operations
  • Good understanding of security frameworks (e.g. ISO 27001, NIST etc.)
  • Highly skilled at identifying security risks and exposures as well as remedial controls and processes
  • Ability to see the bigger picture – always considering the wider impacts of security decision making
  • Experience of working with technical and non-technical stakeholders to embed security controls in line with business risk appetite
  • Exceptional communicator with demonstrable experience providing written and verbal presentations
  • Able to work independently to deliver high quality support to senior stakeholders
  • Excellent relationship management skills at all levels of the organisation
  • Good understanding of relevant legal and regulatory requirements (e.g. GDPR, SOX)
  • Good awareness of Security Architecture and Engineering, Security Operations, and Security Governance, Risk and Control (inc. Business Continuity Management)
  • Experience of providing security advisory for new technology deployments including automation initiatives
  • Comfortable with interpreting technical requirements, regulations and procedures and translating into clear messages for non-technical audiences
  • Strong team player that enjoys collaborative problem solving

Responsibilities

  • Deliver and maintain the ISO 27001 certification across LG Central, including all supporting activities
  • Manage and oversee the ISO 27001 non-conformity process and its integration with security risk management processes, ensuring that remediation efforts are delivered in a timely manner
  • Support the identification, assessment, and delivery of wider certifications, including, but not limited to: ISO 22301, Cyber Essentials+
  • Develop strong relationships in order to build a detailed understanding of the security risks that exist across the business
  • Take accountability for the identification, assessment, and management of new and existing risks, balancing security with business priorities
  • In close partnership with the Security Academy:
  • Deliver against the overarching security culture and awareness strategy
  • Building business awareness of emerging security threats and risks and develop a security culture throughout the organisation
  • Regularly brief the LG Central leadership team on progress against the information security strategy, roadmap, and programmes, as well as emerging cyber threats and changes to risk profile
  • Using expert knowledge of the business, identify key areas of focus for education and awareness campaigns

FAQs

What is the primary responsibility of the Senior Manager Security Compliance?

The primary responsibility is to lead the Security Compliance capability, overseeing and maintaining security certifications, including ISO 27001, and providing expert consultancy and guidance across Liberty Global.

What certifications are required for this position?

Essential certifications include Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Systems Control (CRISC), and ISO 27001 Lead Implementer or Lead Auditor.

What experience is necessary for the Senior Manager Security Compliance role?

Candidates should have experience in delivering and maintaining an ISO 27001 program, extensive knowledge of best practice information security controls, and the ability to identify and manage security risks effectively.

What type of relationships will I need to build in this role?

You will need to develop strong relationships across the business to understand security risks and to promote a security culture throughout the organization.

What will be the focus for the security culture and awareness strategy?

The focus will be on delivering an overarching security culture and awareness strategy, building business awareness of emerging security threats, and fostering a strong security mindset throughout the organization.

Will I need to report to senior leadership?

Yes, regular briefings to the LG Central leadership team on progress against the information security strategy, roadmap, and programs will be part of the role.

Is knowledge of legal and regulatory requirements important for this position?

Yes, having a good understanding of relevant legal and regulatory requirements such as GDPR and SOX is desirable.

What benefits are offered for this position?

Benefits include a competitive salary plus bonus, 25 days annual leave with the option to purchase more, access to wellbeing and mental health benefits, matched pension contributions, and access to an online learning platform.

What kind of work environment is Liberty Global promoting?

Liberty Global promotes an inclusive work environment that prioritizes diversity, equity, and sustainability while encouraging entrepreneurial spirit and collaborative problem-solving.

Where is the Senior Manager Security Compliance role located?

The role is available in London, Reading, or Bradford.

Telecommunications
Industry
10,001+
Employees
2005
Founded Year

Mission & Purpose

Liberty Global is a company operating in the telecommunications and media industry, with a focus on providing broadband, TV, and mobile services to customers in Europe and the Caribbean. Their ultimate goal is to connect people and communities, delivering high-quality digital entertainment, communication, and connectivity solutions. Liberty Global's purpose revolves around offering innovative and reliable telecommunications services that enable individuals and businesses to stay connected, access content, and harness the power of digital technology. Through their network infrastructure and services, they aim to enhance the digital lives of their customers, promote connectivity, and support the digital transformation of societies and economies.