Product Solutions and Support - Security Manager in Cambridge at Sepura

Date Posted: 3/24/2021

Job Snapshot

Job Description

A new and exciting opportunity to join the expanding team at Sepura has come up in the form of a Product Solutions and Support - Security Manager. The successful candidate will provide a lead for the assurance and the implementation of all aspects of security in the delivery of Sepura's products to customers, including support to the business in matters of physical and information security and the handling of 3rd part information assets

This role will take a customer-focused view and be expected to engage both with external and internal team to support the requirements of users of Sepura's products, including the MoD and Home Office. This position will require candidates to provide leadership in defining policy, assisting department heads in implementation of best practices, as well as supporting the delivery of training and administration of the systems.

Main duties will include:

  • Coordinating the delivery of both customer-facing and internal projects and deliverables with specific focus on security
  • Liaison with 3rd parties to deliver compliance to necessary security requirements to support product deliveries
  • Provide guidance within the business on implementation of security, including the handling of 3rd party intellectual property
  • Manage a programme for delivering ISO27001 certification throughout the complete lifecycle of business change and implementation 
  • Coordinate the implementation and maintenance of an information security policy framework (policy, standards and guidelines), reflective of statutory, regulatory and contractual security requirements
  • Implementation and maintenance of policies and procedures (in accordance with ISO27001), incorporating contractual obligations
  • Work with all areas of the business to ensure that strategies relating to security align to company requirements and contractual obligations
  • Engage with stakeholders to discuss security issues and opportunities for enhancement to contribute to Sepura's continual improvement
  • Contribute to staff security awareness (environmental and information security)
  • Supervision of Staff Vetting procedures

This role will require the candidate to already have, or be able to obtain, UK Security Clearance 

Job Requirements

Qualifications

Desirable:

One of more of the following certifications:

  • CISSP
  • SSCP
  • ISO27001 Lead Auditor or Lead Implementer
  • CISA
  • CISM
  • NCSC certified practitioner

Experience

Essential:

  • Successful planning and implementation of business change programmes
  • Experienced in delivering to customer needs in a product development organisation
  • Good understanding of interdependencies between ISO27001 and other ISO standards
  • Experience of establishing and maintaining an Information Security Management System in a large, complex environment
  • Proven track record of supporting the development of information security policies which are effective and easily understood

Desirable:

  • Experience leading cross-functional teams and projects to drive business improvements
  • Managing delivery of services and products to customers with demanding security needs
  • Experience managing external suppliers and customers
  • Experienced in performing risk, business impact, control and vulnerability assessments, and in defining treatment strategies
  • Conducting information security risk assessments
  • Experience of regulatory governed environments
  • Previous work within the Mission Critical Services sector

Skills

Essential:

  • Awareness of product development lifecycles from requirements to delivery
  • Understanding of security concepts, protocols, industry best practices and strategies
  • Demonstrable knowledge of core security principles and controls
  • Understanding of process improvement concepts

Desirable:

  • Understanding of GDPR and data sovereignty principles
  • Cloud security principles
  • An understanding of Governance, Risk and Compliance and its application within an organisation
  • Understanding of Risk Management and methodology 
  • Project management principles and methodologies

Personal attributes

Essential:

  • Highly motivated individual with strong initiative and drive to achieve
  • Flexible and hardworking
  • Self-motivated 
  • Enthusiastic, approachable with excellent influencing skills
  • Good sense of humour and happy to "pitch in" and help out as required
  • Understanding of the sensitivity of the role and prepared to submit to, or already possess, security vetting to SC level

Desirable:

  • Innovative and passionate about delivering and maintaining an exceptional customer experience

Not Ready to Apply?

If you’re interested in career opportunities, but not ready to apply, join our Talent Network to stay connected to us and receive updates on the latest job opportunities and company news.