Logo of Huzzle

Home

Matches

Explore

Manage

Information Security Manager

image

Sainsbury's

Sep 17, 2024

Applications are closed

  • Job
    Full-time
    Senior & Expert Level
  • Engineering
    IT & Cybersecurity
  • Coventry

Requirements

  • - A strong technical understanding of security to ensure systems are designed and built securely and to help continually improve our security posture
  • - Appreciation of containerisation technologies such as Docker, Kubernetes etc.
  • - Experience with logging, monitoring, load balancing/proxies and API gateways
  • - Working knowledge of GitHub, Jenkins, Ansible, Chef and Puppet
  • - In-depth knowledge of the OWASP Top 10, Mitre ATT&CK, NIST frameworks, PCI-DSS and Cyber Kill Chain
  • - Familiarity with PAM, EDR, AV, IPS, SIEM, WAF and DLP technologies
  • - The ability to verify solutions and gain assurance that they are fit for purpose through demonstrable evidence of controls and testing
  • - Strong understanding of the changing threat landscape and how this may affect our systems
  • - Nice to have knowledge of Oracle and SAP clouds
  • - The ability to challenge concerns and report through appropriate channels
  • - Self-drive, motivation and the ability to work independently to deliver expected outcomes
  • - Excellent teamwork and problem-solving skills by blending technical knowledge with business requirements
  • - In-depth understanding of data and security risks in a large enterprise
  • - Risk Management experience and understanding of Risk Management Frameworks
  • - Strong analytical and report writing skills
  • - Preferred: Graduate in computer science or cybersecurity AND;
  • - One or more of the following security qualifications (in-date):
  • - CompTIA Security+ / CySA+ / CASP+
  • - GIAC GX-CS / GCIA / GX-IH / GX-IA
  • - Offensive Security Certified Professional (OSCP)
  • - One or more of the following technical qualifications (in-date):
  • - Certified Kubernetes Security Specialist (CKS)
  • - CompTIA Linux+ / LPIC-3 / Red Hat Certified Engineer (RHCE)
  • - CompTIA Network+ / Cisco Certified Networking Associate / Professional (CCNA or CCNP)
  • - Terraform Associate / Terraform Authoring and Operations Professional
  • - Vault Associate / Vault Operations Professional / Consul Associate
  • - MongoDB Certified Associate (Developer / Administrator / Data Modeler)
  • - One or more of the following governance qualifications (in-date):
  • - Certified Information Systems Security Professional (CISSP)
  • - Certified Information Security Manager (CISM)
  • - Certified AI Governance Professional (AIGP)
  • - Certified NIST Cybersecurity Framework Lead Implementer (CSF LI)
  • - One or more of the following cloud qualifications (in-date):
  • - CompTIA Cloud+
  • - Certified Cloud Security Professional (CCSP)
  • - Certificate of Cloud Security Knowledge (CCSK)
  • - Microsoft Certified: Azure Fundamentals / AWS Cloud Practitioner
  • - Google Professional Cloud Security Engineer / Cloud Developer
  • - Certificate of Competence in Zero Trust (CCZT)
  • - Certificate of Cloud Security Knowledge (CCSK)

Responsibilities

  • - Manage and inspire a team of eleven (11) Information Security personnel comprising of Junior, Senior and Lead Analysts
  • - Lead and be personally responsible for delivering strategic initiatives from the Chief Information Security Officer
  • - Continuously review and evaluate the efficacy of security policies and practices to keep Sainsbury’s up-to-date
  • - Ensure your team are keeping abreast of latest developments by recommending appropriate CPD activities
  • - Thoroughly understand risks that have been raised by Analysts to enable reporting to Senior Management
  • - Review team workloads to ensure appropriate tasks are assigned within the competence of the Analysts
  • - Deliver great performance to our Tech and Digital teams by ensuring tasks are completed within SLAs
  • - Develop mitigation strategies where complicated issues are discovered to allow continuity of operation
  • - Assist in the selection of InfoSec specific tooling and whilst considering Capex and Opex constraints
  • - Manage, validate and document the integration of NIST controls from service design to improvement
  • - Have a deep understand with I.T. Service Model frameworks including ITIL and ISO/IEC 20000
  • - Be prepared to justify decisions based upon Sainsbury’s success criteria, policies and practice
  • - Actively participate in Engineering conversations which aim to improve estate-wide security
  • - Assume leadership for incidents which occur by managing and coordinating the response
  • - General managerial duties such as: appraisals, recruitment, induction, managing leave etc
  • - Provide support to the Head of Product Assurance

FAQs

Do we support remote work?

Yes, we support remote work in a flexible hybrid format.

What is the salary range for this position?

The salary is competitive plus benefits, specific numbers are not disclosed.

Where is the job located?

The job is located at the Coventry Store Support Centre in Ansty Park, Coventry, CV7 9RD.

What is the contract type for this role?

The contract type for this role is permanent.

What are the main responsibilities of the Information Security Manager?

Key responsibilities include managing a team of Information Security personnel, delivering strategic initiatives, reviewing and evaluating security policies, and participating in engineering conversations to improve security.

What qualifications are preferred for this position?

A degree in computer science or cybersecurity is preferred, along with relevant in-date security and technical qualifications.

What experience is necessary to apply for this job?

The ideal candidate should have significant managerial experience, along with expertise in cybersecurity and Information Security.

Are there opportunities for career development in this role?

Yes, Sainsbury’s offers on-the-job training and endless opportunities for career development.

What benefits are provided with this position?

Benefits include colleague discounts, health cover, holiday allowance, bonus scheme, pension plan, and special offers on various services.

Who does the Information Security Manager report to?

The Information Security Manager reports to the Head of Product Assurance – Sainsbury’s.

What types of technologies should candidates be familiar with?

Candidates should have a strong understanding of security technologies, containerization (Docker, Kubernetes), logging, monitoring tools, and various security frameworks (OWASP, NIST).

What is the closing date for applications?

The closing date for applications is 01 October 2024.

image

Sainsbury's

Lend a hand, lead an industry, break the mould. Become the best you that you can be, in a role you enjoy.

Retail & Consumer Goods
Industry
10,001+
Employees
1869
Founded Year

Mission & Purpose

Sainsbury's is one of the UK's leading supermarket chains, offering a wide range of groceries, household essentials, clothing, and other products both in-store and online. With a focus on quality, affordability, and convenience, Sainsbury's serves millions of customers across the country through its network of stores, online shopping platform, and delivery services. Committed to sustainability and social responsibility, Sainsbury's strives to reduce its environmental impact, support local communities, and promote healthier living choices among its customers.

Benefits

  • Colleague discount card

    4 weeks into your role, you’re eligible for a handy 10% off your shop. That’s every time you spend with Sainsbury’s, Argos or Habitat, in store and online. And you can nominate a second user for your card, be that your mother, brother or significant other (as long as you live at the same address).

  • Annual bonus scheme

    While our bonus schemes vary across different sites and roles, they all share the same feel-good factor. Good to know.

  • Pensions

    Planning for your future? So are we. We’ll automatically enroll you onto our pension scheme. And we’ll give you free life cover, equating to a year’s pay. If you choose to pay more with Step Up contributions, then your pension and life cover increases.

  • Holidays

    Whilst holiday allowances vary across roles, we offer a paid holiday entitlement that grows as your career does.

  • Love it

    Enjoy group outings and fun activities? The you’ll love “love it!”. Love it is the home for hundreds of exclusive discounts and savings at over a thousand retailers, including restaurants, cinemas and retail stores. What’s not to love?

  • Awards for long service

    We owe so much to our long-serving colleagues. That’s why we’re all about rewarding their continuous service and celebrating their key milestones. Just the way it should be.