Information Security Manager

McGrathNicol is a specialist Advisory and Restructuring firm, helping businesses improve performance, manage risk, and achieve stability and growth. 
We are seeking an experienced and highly skilled Information Security Manager to lead and manage our ISO 27001 certified company's information security program.  You willbe responsible for ensuring the confidentiality, integrity, and availability of the company's information assets and compliance with relevant regulatory requirements. You will work closely with the broader IT and Digital team and across the organisation to develop, implement, and maintain security policies, processes, security systems and controls that protect our information and technology infrastructure.  

Closing Date

• 22- February- 2025

What you will do

• Implement/Oversee the management of the company's Information Security Management System (ISMS), including ISO27001 standards and ensure their ongoing effectiveness.  
• Support compliance with legal, regulatory, and contractual requirements related to information security and data protection.  
• Develop, implement and continuously improve information security policies, procedures, and guidelines to protect the organisation's assets and minimise risk.  
• Advise on the firm’s security architecture, ensuring the integration of security controls and best practices across all technology layers, including networks, systems, applications, and data, to provide a comprehensive and robust defence against potential threats and vulnerabilities.  
• Collaborate with cross-functional teams to identify and assess potential risks and vulnerabilities in the organisation's information systems and develop mitigation plans.  
• Support the organisation's incident response and management efforts, encompassing identification, analysis, containment, and recovery of security incidents, to maintain a robust security posture.  
• Drive the company's security awareness and training initiatives, fostering a strong security culture and promoting adherence to best practices among employees.  
• Develop and monitor information security key performance indicators (KPIs), to assess the effectiveness of the security program and support continuous improvement.  
• Deliver regular reports to executive management, providing updates on the status of the information security program and potential risks, to support informed decision-making and strategic planning. 

Who you are 

• Experience managing an ISO 27001 certified organisation and a strong understanding of information security best practices and frameworks.  
• Strong knowledge of information security principles, risk management, and incident response.  
• Expert knowledge of leading security frameworks, systems, tools, methods, and practices.  
• Strong analytical, project management and problem-solving skills, with the ability to make informed decisions under pressure.  
• Excellent communication and presentation skills, with the ability to clearly convey complex concepts to both technical and non-technical stakeholders.  
• Have a certification in information security management, such as CISSP, CISM, or ISO 27001 Lead Implementer/Lead Auditor, and a bachelor’s degree in information technology, Computer Science, or a related field.  

What we offer you

• In return we offer a dynamic environment where employees are rewarded for their hard work through our annual bonus program. Other benefits include excellent training and career development opportunities, and the opportunity to work alongside some of the best practitioners in the field. 

Interested?

• Please click ‘apply now’ below to submit your CV for consideration. If you would like further information, please contact our national HR team at HR@mcgrathnicol.com.