IT Security Assurance Manager
| Dyddiad hysbysebu: | 11 Mawrth 2026 |
|---|---|
| Cyflog: | £40,388 i £43,482 bob blwyddyn |
| Oriau: | Llawn Amser |
| Dyddiad cau: | 31 Mawrth 2026 |
| Lleoliad: | BS16 1EJ |
| Cwmni: | Government Recruitment Service |
| Math o swydd: | Parhaol |
| Cyfeirnod swydd: | 452313/1 |
Crynodeb
This role provides an excellent opportunity to join the Forestry England IT Security Governance, Risk and Compliance team. You will be responsible for taking forward and developing our IT Security assurance and audit activities, governance, risk-awareness, security, and compliance obligations in a dynamic environment. The IT Security Assurance Manager will be:
- Overseeing audit assessment, assurance and remedial/improvement actions.
- Leading liaison activities to drive awareness and collaborative improvement workstreams.
Leading efforts to attain and work to industry frameworks, standards and best practice.
You will help us drive forward security standards and capabilities, understanding and identifying the risks associated with systems, services and suppliers to align standards to HMG security requirements, legislative obligations, and best practices effectively.
Where you’ll work:
- If local to Bristol, you will be required to work from the office approx. 2 days per week. If you are not local to Bristol you may be contracted and able to work from a local site.
- You would be able to attend our north Bristol office ideally once/twice per month.
- You may occasionally be required to make planned site visits across England with some overnight stays.
- You will be required to participate in planned on call rotas.
- Other infrequent out of hours work may be necessary, e.g. supporting resolution of incidents.
Key work areas: responsibilities & accountabilities
• Assessment, audit, assurance and remedial improvement.
You will have responsibility for overseeing and responding to internal audits and assurance testing programmes, and for managing and driving our programme of external audit and assurance testing. Forming strong relationships, you will use the results of assessments, audits, assurance exercises and testing, to lead and drive continuous improvement; overseeing planned improvement actions until vulnerabilities are treated. You will also provide information and guidance to contract managers, system owners and managers to drive change and improvement across our procurements, contracts, and supply chains; working to improve their security posture and meet HMG standards.
• Cross-departmental liaison
You will be responsible for and lead IT Security Team efforts to proactively improve protective security standards for all departments and the Forestry Commission as a whole. You will position yourself as a consultant focussing on new product/service evaluation, procurements, and improvement to existing third-party products/services. You will promote and embed IT security governance, principles and best practice; and provide tailored advice on risk and information management, guidance to System Owners and Managers, and colleagues as required.
•Delivering Beneficial System Change
You will stay abreast of evolving threats, industry trends, and government guidance to elevate our system-security standards while serving as an escalation point for vulnerabilities and risks, offering clear risk treatment planning and management. You will also advise and support physical security initiatives in collaboration with the Estates Department, prioritising high-value and exposed assets. You will also contribute to Disaster Recovery, Incident Management, and Business Continuity efforts, and participate in collaborative IT Security initiatives.
• Standards and accreditation
The ITSAM will contribute to efforts to drive forward accreditation applications to demonstrate our approach, and competencies, and protective standards for the benefit of all departments and the Forestry Commission as a whole. You will act as lead and subject matter expert to progress attainment of accreditations from start to completion.
Aelod balch o'r cynllun cyflogwyr Hyderus o ran Anabledd