Cyber Security Lead - Luton ??60-70k

I am working on behalf of my client to source a cyber security lead to join their organisation during an exciting time of growth and work on some truly profound projects. Luton (hybrid working) - GBP60,000-GBP70,000 p/a + significant benefits.

Role outline You will lead, promote, and assist in the implementation, where practicable, of procedures designed to attain compliance of the NIS Regulations, GDPR, ISO27001 (BS7799), ICFR (ISAE3402) and other relevant standards. This will involve establishing security processes that can ensure compliance and accreditation with ICT security best practice.

Major Duties will involve the following:

* To carry out technical vulnerability assessments of IT systems and processes, identifying potential vulnerabilities, to make recommendations to control any risks identified and to ensure they are implemented.

* To respond rapidly and effectively to IT security incidents, managing them in a professional manner, including computer forensics for evidence gathering.

* Develop policies and processes in conjunction with IT Manager for cyber security, incident management, IT risk management, incident response, endpoint security, network security and business continuity

* To work closely with the leadership to assist and provide input to ensure that policies and procedures for Information Security are effective are adhered to. To be proactive in making recommendations for updates to policies & procedures as required.

* To provide high quality Information Security guidance documentation and training within the IT Team.

* Lead LLA's efforts in end-user cyber security awareness training. Succesful applicants will have;

* Credible knowledge/experience of managing all areas of corporate/public Cyber-Security with Experience of implementing policies from scratch following ISO27001.

* Capable of investigating & analysing information technology logs and events sources preferred

* Advanced knowledge of security tooling, its purpose and capabilities and how they can be configured to implement company policy (Anti-Malware, IDS/IPS, CASB, email security gateways, security analysis tools, web security tools, next generation Firewall/UTMs)