Dieses Jobangebot ist archiviert und steht nicht mehr zur Verfügung.
Vakante Jobangebote finden Sie unter Projekte.
Vakante Jobangebote finden Sie unter Projekte.
Security Assurance & Management Lead
Eingestellt von Networkers International Plc
Gesuchte Skills: Support, Client
Projektbeschreibung
Position Title:
Security Assurance & Management lead
Reports to:
Service Assurance Manager
Summary of Role:
The Security Assurance & Management Lead is responsible for the provision of a holistic view of Security Assurance & Management across the eco-system and aligns and provides governance and oversight of the Service Provider(s) Security plans and management. The Security Assurance & Management Lead will be accountable, with the Service Provider(s), for ensuring that the confidentiality, integrity and availability of an organisation's assets, information, data and IT service match the agreed needs and Security standards of the business and ensure alignment with IT and Group and business Information security management. The Security Assurance & Management Lead is responsible for establishing and maintaining an Information. Security Management System (ISMS) that provides a standard, formal and continuous approach to security management for information, facilitating secure technology and business processes that are aligned with business requirements and enterprise security management. The Security Assurance & Management Lead is responsible for Security Management and Assurance and to understand the future business requirements (the required service delivery), the organisation's operation (the current service delivery) in line with Service Provider(s) contracted responsibilities, and ensure that all current and future capacity and performance aspects of the business are provided cost effectively. The Security Assurance & Management Lead will assist the Service Assurance Manager to manage the definition of services and service levels required to support the business and ensure that these services are provisioned successfully.
Principal Accountabilities:
Accountable, with the Service Provider(s), for ensuring that the confidentiality, integrity and availability of an organisation's assets, information, data and IT service match the agreed needs and Security standards of the business and ensure alignment with IT and Group and business Information security management. Facilitate team and Service Provider compliance with the agreement. Support and follow defined SIAM Governance decision rights, standards and practices. Responsible and accountable with the Service Provider(s) for defining, operating and monitoring a system for Information Security Management (ISMS). To be accountable for continuously monitoring and evaluating the control environment, including self-assessments and independent assurance reviews to enable the management of and to identify control deficiencies and inefficiencies and subsequently to initiate improvement actions. In agreement with the Service Provider(s) be responsible for setting and monitoring formal technology security standards and setting out how IT infrastructure assurance should operate, forming the bases against which performance is measured and/or compliance is monitored. To review technology based security research and developments and providing recommendations from market awareness & vendors to adopt. Serve as an ITIL expert in the analysis/development of existing processes, procedures and methods to promote effective business and systems operations through standardisation, simplification and improvement. To identify and directly manage or oversee improvements to process, service and the customer experience. To manage risks that could seriously affect Security Assurance & Management across the company estate. Accountable for continuously monitoring and evaluating the control environment, including self-assessments and independent assurance reviews. Enable management to identify control deficiencies and inefficiencies and to initiate improvement actions. Plan, organise and maintain standards for internal control assessment and assurance activities.
Principle Challenges:
Ensure the Service Provider(s) performs the services agreed to by the master services agreement in a manner that is consistent with both the spirit and the letter of the agreement. Ensure business and operational viability of service levels. Manage critical operational issues that cross organisational boundaries. To manage risks that could seriously affect IT service and to liaise and work with IT service continuity management to ensure that the IT service can always provide minimum agreed service levels, by reducing the risk to an acceptable level and planning for the recovery of IT services. Ensure that the Service Provider(s) Producing dashboards and monthly metrics/reporting for Security Assurance & Management in line with agreed and contracted timelines and constraints
Output & Results:
To establish and maintain an ISMS that provides a standard, formal and continuous approach to security management for information, facilitating secure technology and business processes that are aligned with business requirements and enterprise security management. Plan, organise and maintain standards for internal control assessment and assurance activities. Defining requirements for Service Provider(s) for compliance to the Security Management Processes. Defining requirements for Service Providers for the knowledge database content to ensure that workarounds left without permanent fixes for long periods of time are highlighted and addressed accordingly. Establishing a regular operational meeting cadence in support of Security Assurance & Management to help ensure optimisation of Service Provider(s) performance. Defining requirements for Service Provider(s) to ensure that information on existing and proposed standards, policies and guidelines are published and made available via standard communication tools. To maintain strong and productive relationships with the Service Provider(s) to ensure that service performance is effectively managed and monitored, and issues are dealt with promptly and in line with contractual obligations. Establish and maintain strong and productive relationships with key stakeholders to ensure that the varied and changing service requirements of the business are understood and are incorporated into a framework of Security Assurance & Management
Job Environment:
Create an environment that values employees and encourages cooperation, open communication and teamwork. Serve as a role model by demonstrating a commitment to client values, high performance standards, workplace diversity, and driving results. Ensure team supports and helps to achieve company's
Transformation Relevant experience and qualifications required:
10+ years of progressive leadership experience of increasing complexity, including management of a highly matrixed organizations. Proven executive experience in implementing and managing IT delivery teams. Experience in business systems and process planning. Experience of indirect management - managing by influence as opposed to positional authority Bachelor's Degree and required skillsets. Professional Competency Level Good negotiation, influencing and problem resolution skills. Proven ability to effectively prioritize and execute tasks in a high-pressure environment. Demonstrated ability to assess customer/client needs, creatively approach solutions, decide and influence appropriate courses of action. Strong verbal and written communication skills with the ability to articulate complex ideas in easy to understand business terms. Ability to present ideas in business-friendly and user-friendly language Good facilitation skills. Excellent interpersonal skills. Self-motivated and directed. Strong client service orientation Team-oriented, collaborative leadership skills. Demonstrated ability to lead by example. Ability to accomplish results through others, particularly by establishing relationships, effective controls and monitoring processes. Collaboration and partnering skills. Ability to be firm, but fair, to achieve contracted deliverables and obligations. Technical Competency Level. Experienced with service integration within a sourced multi-provider environment. Knowledge with and experience using ITIL and ISO 20000 frameworks. Experience with and knowledge of IT outsourcing activities in a managed services environment. Proven knowledge of all aspects of the IT functional areas. Knowledge of business environment, service requirements and culture It is a given that all role-holders will be strong role models of the company.
Behaviours:
Building Communities
Demonstrating Transparency
Taking Accountability
Driving Commerciality
Enabling Performance
Focusing on the Future
Valuing Professionalism
Security Assurance & Management lead
Reports to:
Service Assurance Manager
Summary of Role:
The Security Assurance & Management Lead is responsible for the provision of a holistic view of Security Assurance & Management across the eco-system and aligns and provides governance and oversight of the Service Provider(s) Security plans and management. The Security Assurance & Management Lead will be accountable, with the Service Provider(s), for ensuring that the confidentiality, integrity and availability of an organisation's assets, information, data and IT service match the agreed needs and Security standards of the business and ensure alignment with IT and Group and business Information security management. The Security Assurance & Management Lead is responsible for establishing and maintaining an Information. Security Management System (ISMS) that provides a standard, formal and continuous approach to security management for information, facilitating secure technology and business processes that are aligned with business requirements and enterprise security management. The Security Assurance & Management Lead is responsible for Security Management and Assurance and to understand the future business requirements (the required service delivery), the organisation's operation (the current service delivery) in line with Service Provider(s) contracted responsibilities, and ensure that all current and future capacity and performance aspects of the business are provided cost effectively. The Security Assurance & Management Lead will assist the Service Assurance Manager to manage the definition of services and service levels required to support the business and ensure that these services are provisioned successfully.
Principal Accountabilities:
Accountable, with the Service Provider(s), for ensuring that the confidentiality, integrity and availability of an organisation's assets, information, data and IT service match the agreed needs and Security standards of the business and ensure alignment with IT and Group and business Information security management. Facilitate team and Service Provider compliance with the agreement. Support and follow defined SIAM Governance decision rights, standards and practices. Responsible and accountable with the Service Provider(s) for defining, operating and monitoring a system for Information Security Management (ISMS). To be accountable for continuously monitoring and evaluating the control environment, including self-assessments and independent assurance reviews to enable the management of and to identify control deficiencies and inefficiencies and subsequently to initiate improvement actions. In agreement with the Service Provider(s) be responsible for setting and monitoring formal technology security standards and setting out how IT infrastructure assurance should operate, forming the bases against which performance is measured and/or compliance is monitored. To review technology based security research and developments and providing recommendations from market awareness & vendors to adopt. Serve as an ITIL expert in the analysis/development of existing processes, procedures and methods to promote effective business and systems operations through standardisation, simplification and improvement. To identify and directly manage or oversee improvements to process, service and the customer experience. To manage risks that could seriously affect Security Assurance & Management across the company estate. Accountable for continuously monitoring and evaluating the control environment, including self-assessments and independent assurance reviews. Enable management to identify control deficiencies and inefficiencies and to initiate improvement actions. Plan, organise and maintain standards for internal control assessment and assurance activities.
Principle Challenges:
Ensure the Service Provider(s) performs the services agreed to by the master services agreement in a manner that is consistent with both the spirit and the letter of the agreement. Ensure business and operational viability of service levels. Manage critical operational issues that cross organisational boundaries. To manage risks that could seriously affect IT service and to liaise and work with IT service continuity management to ensure that the IT service can always provide minimum agreed service levels, by reducing the risk to an acceptable level and planning for the recovery of IT services. Ensure that the Service Provider(s) Producing dashboards and monthly metrics/reporting for Security Assurance & Management in line with agreed and contracted timelines and constraints
Output & Results:
To establish and maintain an ISMS that provides a standard, formal and continuous approach to security management for information, facilitating secure technology and business processes that are aligned with business requirements and enterprise security management. Plan, organise and maintain standards for internal control assessment and assurance activities. Defining requirements for Service Provider(s) for compliance to the Security Management Processes. Defining requirements for Service Providers for the knowledge database content to ensure that workarounds left without permanent fixes for long periods of time are highlighted and addressed accordingly. Establishing a regular operational meeting cadence in support of Security Assurance & Management to help ensure optimisation of Service Provider(s) performance. Defining requirements for Service Provider(s) to ensure that information on existing and proposed standards, policies and guidelines are published and made available via standard communication tools. To maintain strong and productive relationships with the Service Provider(s) to ensure that service performance is effectively managed and monitored, and issues are dealt with promptly and in line with contractual obligations. Establish and maintain strong and productive relationships with key stakeholders to ensure that the varied and changing service requirements of the business are understood and are incorporated into a framework of Security Assurance & Management
Job Environment:
Create an environment that values employees and encourages cooperation, open communication and teamwork. Serve as a role model by demonstrating a commitment to client values, high performance standards, workplace diversity, and driving results. Ensure team supports and helps to achieve company's
Transformation Relevant experience and qualifications required:
10+ years of progressive leadership experience of increasing complexity, including management of a highly matrixed organizations. Proven executive experience in implementing and managing IT delivery teams. Experience in business systems and process planning. Experience of indirect management - managing by influence as opposed to positional authority Bachelor's Degree and required skillsets. Professional Competency Level Good negotiation, influencing and problem resolution skills. Proven ability to effectively prioritize and execute tasks in a high-pressure environment. Demonstrated ability to assess customer/client needs, creatively approach solutions, decide and influence appropriate courses of action. Strong verbal and written communication skills with the ability to articulate complex ideas in easy to understand business terms. Ability to present ideas in business-friendly and user-friendly language Good facilitation skills. Excellent interpersonal skills. Self-motivated and directed. Strong client service orientation Team-oriented, collaborative leadership skills. Demonstrated ability to lead by example. Ability to accomplish results through others, particularly by establishing relationships, effective controls and monitoring processes. Collaboration and partnering skills. Ability to be firm, but fair, to achieve contracted deliverables and obligations. Technical Competency Level. Experienced with service integration within a sourced multi-provider environment. Knowledge with and experience using ITIL and ISO 20000 frameworks. Experience with and knowledge of IT outsourcing activities in a managed services environment. Proven knowledge of all aspects of the IT functional areas. Knowledge of business environment, service requirements and culture It is a given that all role-holders will be strong role models of the company.
Behaviours:
Building Communities
Demonstrating Transparency
Taking Accountability
Driving Commerciality
Enabling Performance
Focusing on the Future
Valuing Professionalism
Projektdetails
Geforderte Qualifikationen
-
Kategorie:
IT Entwicklung, Sonstiges