IT Security Manager

IT Security Manager Newbridge (Open to public competition) Bord na Mna is currently looking for an IT security manager to join the IT team. The successful candidate will be responsible for securing the operations, both internal and external facing. The role is responsible for information security strategy, technology decisions and implementation, as well as liaising with the business. The role will be responsible for managing IT compliance, audit actions and the IT Risk register, with internal and external stakeholders. The main duties and responsibilities of the role will include the following: Assess the current environment, identify key areas of risk, develop the enterprise security strategy, prepare an annual operational plan/roadmap and deliver on the strategy across the enterprise. Responsible for all aspects of Information Security program, including people, process, technology and compliance. Responsible for ensuring ability to meet third party assessment requirements. Ideally the candidate will have experience working with Operational Technology. Identify, report and control incidents. All security incidents must be centrally managed to ensure consistency in the management of, and response to incidents. For major incidents prepare post incident reports and lessons learnt and present to senior management and the board as needed. Responsible for the development of the enterprise wide cyber security agenda and would provide both classroom, and web based, training on an annual basis to all members of staff, including contractors and third parties. Evaluate emerging cybersecurity and IT technologies for adoption, as well as provide guidance to internal technology and business teams. In addition to the awareness training, it is expected that the role would be visible and continuously communicating with staff, management and with executive leadership, including the board. Brief leadership team on a regular basis on Information Security relevant trends, data, and more. Monitor for potential threats both internal and external. Understanding the threat landscape, constantly test the enterprise for weaknesses through external and internal vulnerability and penetration testing, and adapting the enterprise security programme to remove or mitigate new and emerging threats is critical. Develop and manage to budgets for the Information Security department. Cyber Security is classified as one of the highest risks to the organisation. The role is responsible for managing internal /external auditors and the recommendations from the audits. The role will own the Internal Controls Framework and maintain the IT risk register. Responsible for ensuring compliance with applicable regulations, including PCI DSS, GDPR, etc. Specifically responsible for ISO27001 certification and compliance with NIS2 legislation. Managing of 3rd party security vendors is crucial ensure the overall integrity of BnM systems. Proactively participate in the performance management process to ensure delivery of their own, an the wider teams objectives All employees are expected to co-operate fully with all provisions taken by the company for ensuring Health and Safety, and Welfare of co-employees and members of the public using the premises. The Person: The ideal candidate will possess the following qualification, skills, knowledge and attributes: Minimum 10+ year of IT infrastructure/application with 5+ years in IT Security field Professional certifications in CISSP or CISM or equivalent is preferred. Experience with Operational Technology will be a distinctive advantage. The selection process for this role will include candidate screening from application. If you wish to be considered simply click Apply on the job advert, on or before 13th of March 2025 Bord na Mna is an equal opportunities employer. Skills: Professional certifications in CISSP or CISM Experience with Operational Technology Minimum 10+ year of IT infrastructure/application 5+ years in IT Security field