Information Security GRC Manager

Job description

Job Description We're now recruiting an Information Security GRC Manager to support the Senior Manager and Chief Information Security Officer in managing and reporting the Information Security Risks faced by Technology Services and Business teams in delivering AJ Bell’s systems and services. The Information Security GRC Manager, will work with the business and the wider information security team to ensure the appropriate controls, policies and procedures are in place to protect AJ Bell in-line with industry best practice and regulatory legislation. In addition, this role will support the coordination and response to activities affiliated with external/internal IT audits as well as due diligence exercises requested by our external business partners and those we perform on our suppliers. The key responsibilities of the role are: - Development and delivery of information security policy aligned to industry recognised frameworks (typically ISO27001/2) - Exception to policy process management and reporting - Management reporting on the status of Information Security and the security change programme. - Partner with Business and Technology teams, to develop and track remediation plans fo...