Cyber Security Manager - Manchester - JD Williams

Description

We're looking for a passionate and experienced Cyber Security Manager with a proven track record of delivering software solutions to join our Fintech division within N Brown. As a member of the Fintech team, you'll be at the heart of a unique and exciting venture to assemble a new financial services platform.

What type of person are we looking for?

Driven by boundless curiosity and experimentally minded, always starting with 'why?'.

Tenacious and persistent, willing to go above and beyond to deliver great outcomes.

Focused and decisive, able to ruthlessly prioritise to stay on track.

Energised by collaboration and a champion of radical candour.

Work hard whilst maintain our sense of humour, and don't take ourselves too seriously.

About the RoleWe are looking for an experienced cyber security specialist, with a track record of facilitating change to help assure our future success. The Cyber Security Manager will oversee risk assessment and communication related to software and infrastructure vulnerabilities. They will collaborate with teams to identify vulnerabilities, prioritise risks, and improve the vulnerability management process, including continuous scanning and patch management.

What will you do in this role?

Manage Castle Fintech's ongoing cyber commitments to the business and help deliver operational security control measures, risk & governance frameworks and InfoSec principles and standards.

Help identify emerging security threats, risks and vulnerabilities to ensure appropriate countermeasures and risk mitigations are identified, prioritised and implemented through our cyber detection technologies and governance frameworks.

Provide Cyber Security subject matter expertise across Castle internal stakeholders to ensure the confidentiality, integrity and availability of systems, data and information assets, while working closely with our information security partners to maintain an ahead of the curve approach to industry technologies and threats.

Identify and remove impediments faced by the team by working collaboratively with stakeholders to proactively manage any risks, issues or delays.

To deliver the InfoSec technology roadmap into the business, ensuring our regulatory obligations are met in line with industry best practice.

To help shape and inform ongoing cyber security strategy in an ever-changing digital landscape.

To manage and oversee an appropriate programme of vulnerability and patch management to maintain an informed understanding of our technical control measures.

Define and review key security performance indicators that ensure service delivery and service improvements.

Develop and create reports for management updates and escalations using key program performance metrics.

Work closely with outsourced SOC.

Ensure information and security data is continuously collected, correlated and analysed to detect external and internal threats and vulnerabilities to our services.

What skills and experience will you have?

Good working knowledge of AWS security services and implementations, e.g. Security Hub, Control Tower, Organizations, SCPs, IAM entities and policies, Account lockdown and AI/ML tools like Macie and Guard Duty.

You will also understand and maintain security compliance requirements e.g. DPA, GDPR, PCI DSS, SOC1, SOC2 and ISO27001.

To have a personal and corporate awareness of current Information Security Issues, e.g. emerging vulnerabilities and zero-day exploits, and to identify appropriate risk mitigation counter-measures.

Understanding of risk assessment methodologies and the ability to identify, assess, and prioritise security risks to the organization.

Managing third party suppliers including SOC providers.

The ability to work with teams and stakeholders across Castle to promote and facilitate security best practise.

Excellent communication skills to effectively convey complex technical information to non-technical stakeholders, executives, and employees. This includes writing reports, creating policies, and conducting security training.

Ability to analyse complex problems, troubleshoot security incidents, and develop effective solutions to mitigate security risks.

Desirable qualifications:

Certified Information Systems Security Professional (CISSP)

Offensive Security Certified Professional (OSCP)

What's in it for you?

Hybrid working

24 days holiday (+ 8 bank holidays)

Annual bonus scheme

Enhanced maternity and adoption leave

Company pension with up to 8% N Brown contribution

Mental Health support both internally and externally, including access to our wellbeing champions and counselling services

A range of financial wellbeing support

Stream - a financial wellbeing tool that helps you track your pay, access earnings early and manage your money with confidence

Colleague discount across all N Brown brands

Onsite café with subsidised rates and local restaurant discounts

Life Assurance and Private Medical Insurance

Paid volunteer time - all our colleagues can take a full day paid to volunteer for a charity of their choice

N Brown - who we are and why work for us?At N Brown, we're committed to building a diverse workforce and creating an inclusive environment that values equality for all. Our vision is that by 'championing inclusion, we'll become the most loved and trusted fashion retailer'. Diversity, Equity, Inclusion and Belonging are, therefore, at the heart of our culture.

We're a forward-thinking digital retailer with a financial services proposition to be proud of. We're customer-obsessed, serving them through three core brands: JD Williams, Simply Be, and Jacamo. We're experienced, with over 160 years of trading under our belt. We're inclusive, as we believe in fashion without boundaries; and we're sustainable, striving to make as little impact on the planet as possible.

In May 2024 we were delighted to be named one of The Sunday Times Best Places to Work 2024. We work hard to create a happy and inclusive culture for everyone and we're so proud to have made this list - as voted for by our very own colleagues

Ways of WorkingWe offer hybrid working which varies across the business depending on the role you're in. Our Head Office is located in the Northern Quarter in Manchester City Centre. So if you are travelling by train, tram or bus we're perfectly located, plus we're surrounded by cool cafes, trendy bars and the best places to eat

Our working hours are 36.17 per week and our core working hours are between 10am - 4pm. Given we don't have strict working hours you can find the working pattern that's right for you.

Our promise to you:We're an equal opportunity employer and value diversity. We do not discriminate based on race, religion, colour, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status.

Please know your application is being reviewed by a real human being, not AI. We value your interest in joining us and appreciate you taking the time to submit your application.

What happens when you apply to a role at N Brown?As soon as we receive your application, we'll send you an email to let you know. We always aim to come back to you as soon as possible with an update and we really appreciate you taking the time to apply for a role with us. Good luck

#J-18808-Ljbffr