IT and Information Security Manager - Classified Governmental Business (m/f/d) - UK

IT and Information Security Manager - Classified Governmental Business (m/f/d) - UK

Job Description

An exciting opportunity has arisen for an IT Information Security Manager to join our team.

Work with us and we'll welcome you into an inclusive culture, one that invests in your continuous learning and development, and gives you access to a wide breadth and depth of experience.

We offer excellent development, a competitive salary and remarkable benefits. These include bonus, employee support assistance and employee discounts.

Your needs are as unique as you are. Hybrid working is a way in which our people can balance their time between the office, home or another remote location. It's a locally managed and flexed informal discretionary arrangement. As a minimum we're all expected to attend the workplace for collaboration and other specific reasons, on average three days per week.

What you will be doing:

1. Support the Implementation of the information security strategy with the focus of governmental business.
2. Development and definition of security concepts and guidelines, procedures and specifications, in accordance with the international specifications for secrecy protection.
3. Point of contact for local and relevant regulations for governmental business.
4. Monitoring and ensuring the compliance with national, international and supranational regulatory requirements in IT projects and for IT operations.
5. Alignment and interpretation of requirements of the business departments - Presentation of the relevant requirements in the context of governmental business.
6. Exchange and coordination with internal and external stakeholders in the context of governmental business.
7. Identification, assessment and management of information and cyber risks, protection needs assessments, and the presentation of key figures and reports.
8. Working with auditors and subject matter experts to meet internal and external audit requirements.
9. Management and support of (IT) projects and initiatives for governmental business.
10. Point of contact for questions relating to information security governance and risk assessment.

IT-Infra:

1. Recording, challenging and coordinating the IT infrastructure requirements for regulated information.
2. Data centre, network, server/storage, systems management, client, collaboration.
3. Development of implementation concepts to realise the requirements, taking into account the relevant government and RRPS specifications, including the necessary IT systems management environments.
4. Coordination and realisation of projects to implement the concepts.
5. Development and implementation of operational processes, taking into account the relevant government requirements.
6. Ongoing operation of the implemented environment.
7. Continuous further development of the operated environment.
8. Close cooperation with the specialist departments, the Governmental IT Team, IT Security and Global IT Infrastructure.

Who we are looking for:

At Rolls-Royce we embrace agility, are bold, pursue collaboration and seek simplicity in everything we do. These values form our values and behaviours and are an essential component of our assessment process and are fundamental qualities that we seek for all roles.

1. Successfully completed studies in the field of information/IT security, computer science, or a comparable qualification.
2. Extensive knowledge of regulatory and legal requirements in the context of governmental business.
3. Demonstrated, deep knowledge in the field of information security in an international, regulated environment (e.g. ISO 27001, NIST SP 800-171, CMMC, Cyber Essentials Plus, FedRamp, BSI-IT basic protection, etc.)
4. Several years of professional experience (at least 5 years) in information security governance, using information security and industry standards.
5. Several years of experience with regulated, data in an industrial, non-governmental environment.
6. Ideally a certification as ISO 27001 Lead Implementer/Auditor, CISSP, CISM or comparable.
7. Strong analytical/conceptual skills and a precise way of working.
8. Team player with commitment, a high sense of responsibility and an independent way of working.
9. Strong technical understanding of IT security and engineering/technology.
10. Persuasive and enthusiastic with strong communication skills.
11. Business fluent very good written and spoken English skills are essential.
12. Several years of professional experience in the design and operation of IT infrastructure.

We are an equal opportunities employer. We're committed to developing a diverse team and an inclusive working environment. We believe that people from different backgrounds and cultures give us different perspectives. And the more perspectives we have, the more successful we'll be. By building a culture of respect and appreciation, we give everyone who works here the opportunity to realise their full potential.

We welcome applications from people with a refugee background.

You can learn more about our global Inclusion strategy at Our people | Rolls-Royce

Job Category: Information Technology

Posting Date: 27 Aug 2024; 00:08

Posting End Date: 10 Sept 2024