Offered Salary 1000
Experience 4 Years
Full Job Description
The Royal College of Art is the UK’s only entirely postgraduate institution of art and design, dedicated to teaching, research and knowledge exchange with industry. The RCA has been ranked the number one university-level institution for art and design, internationally, for the eighth consecutive year according to the QS World University Rankings by Subject, 2022.
Applications are invited for an Information Security Manager in IT, Library and Technical Services (ILTS). You will be educated to degree level or have equivalent experience. At least one relevant professional qualification, eg ITIL (IT Infrastructure Library, Prince2 Project Management, along with experience of working within assurance frameworks and models such as PCI DSS, ISO27001 and ISO27002.
To take oversight of the College’s systems and technical architecture and advise on suitability of the design, tools, activities, control measures and processes which are required to mitigate known and emerging risks and comply with relevant legislation.
To manage the process of gathering, analysing and assessing the current and future threat landscape, providing a realistic view of risks, threats and priorities in the enterprise environment.
Maintain awareness of best practice and current thinking in information, IT and cyber security, e.g. engaging with leadership bodies such as NCSC and JISC
To act as a critical friend to the College, promoting good security practices and ensuring good practice around information management and governance throughout the College and its change programmes.
To coordinate with internal teams, Schools and departments throughout the College and external suppliers to ensure the design and development of IT solutions that match agreed security architectures.
To ensure an effective programme of vulnerability and compliance assessment of IT systems and processes is in place, ensuring threats to the College’s systems and data are identified, remediated or mitigated.
To support colleagues in reducing and/or mitigating risks in the area of data protection.
To produce effective Cyber Security guidance documentation and user aware training media.
To establish and maintain credibility with stakeholders at all levels of the organisation, build effective working relationships and manage expectations.
To maintain an effective security incident management plan; Lead and coordinate Cyber Security incidents and investigations, including computer forensics for evidence gathering and preservation; Ensure appropriate and effective engagement with individuals concerned and liaison with external agencies when required.
To lead the selection, implementation and operation of cyber security services and solutions.
To take a leading role in the development and ongoing support of departmental and College wide Risk assessment and DR/BCP planning
Act as the College’s nominated JANET Computer Emergency Response Team (CERT) contact
To support the Head of IT in the planning and development of an appropriate five year IT plan, its integration into the wider ILTS plans and other school, departmental, and institutional frameworks
To build knowledge of the College operations and security architecture to enable consistent and valued security advice.
Please see Information pack for more details.
This role closes at midnight on Thursday 22nd September 2022