Role Name: Cyber Security Manager
Reporting to: Head of IT
Job Overview
Jersey Water’s people strategy is focused around providing a great place to work. We achieve this by ensuring we have high calibre, happy and engaged employees who work in a safe environment and are supported to experience new challenges and fulfil their potential.
Our people are crucial to the success of Jersey Water and, as such, we invest heavily in activities that support employee engagement and wellbeing. Our generous benefits package is focused on good mental and physical health and our people’s feedback is the starting point in creating our People Strategy.
Jersey Water’s company values are incorporated into everything we do; from the way we interact with our colleagues and customers, through to Strategy setting and delivery. Our values are so important that our performance is measured equally between the role that we perform and the way that we do it (living and demonstrating our values). Team participation and feedback flows through each of Jersey Water’s initiatives, with many people getting involved in projects outside of their own departments. Cross team collaboration is at the heart of everything we do.
The role of the Cyber Security Manager will shape Jersey Water’s cyber security strategy, lead on policy development and work closely with senior leadership and executive teams. The role will oversee supplier third-party security services and assess both internal and external monitoring and response. A key capability of the role is developing relationships with industry colleagues and carrying out research on the evolving cyber threat landscape to critical national infrastructure. This role will provide assurance and advise on security requirements covering on premise, cloud and the operational technology network. The role will require a pragmatic approach to balance the needs of service delivery within a secure environment.
Employee Profile
You will also need to demonstrate the following attributes:
- Cyber security professional research and development
- Demonstratable practical experience of managing a Security Information and Event Management solution
- Practical experience of Information Security Risk Management and Threat Management
- Hands on experience of handling security incidents and security monitoring services
- Experience of carrying out security risk assessments of Software as a Service or Platform as a Service solutions
- Ability to scrutinise third-party managed incident and security service reports
- Capability to advise senior leaders around Cyber Security considerations of new technology solutions
- Understand network, application and infrastructure technologies and design
What you do:
- Ensure current solutions & systems are robustly protected from known threats and advise where changes or enhancements may be required
- Assess new solutions and advise to ensure they meet a secure architectural design from pre-assessment through to implementation
- Manage the implementation of physical and logical security controls and governance
- Escalate both internal and external risks to senior leadership as and when they arise
- Maintain the security elements of the risk register and the security dashboard
- Provide reports for security recommendations, risks or incidents up to Board level
- Increase the effectiveness of and efficiency of security operations and response by testing cyber response plans and organisational compulsory cyber security training
- Manage the security workstream and co-ordinate deliverables with the Head of IT to continually improve Jersey Water’s security posture
- Act as critical friend to the IT team and a trusted advisor to the Leadership Team and Executive
How you do it (Company values):
- Take personal ownership for your personal and professional development, booking 1:1 meetings, performance reviews and focused five discussions. Fully preparing for each
- Constantly review the work that you do and the way that you do it, looking for opportunities to streamline processes
- Align your behaviour, actions and decision making with our values of We Care, We are ambitious and We work together at all times
- Act as a leader at all times, considering the impact of your actions on others
- Present a positive, can do attitude
- Support your Lead in successful delivery of departmental objectives and changes in policies and processes
- Challenge the status quo in a productive and positive manner
- Accept and give feedback readily, assuming positive intent
- Keep up to date with policies and procedures
- Put the needs of the company and our customers at the forefront of our minds
- To actively partake in inter departmental and wider company group initiatives to promote team working to ensure continuous improvement is demonstrated
- To understand and live the Company Values, being able to demonstrate alignment to them as part of the performance review process
Application Deadline: Monday 19th September