Please note that this is a fixed-term contract until February 21st 2023.
What’s the role about?
The John Lewis Partnership’s Information Security strategy is bold and ambitious. We provide a collection of security services, delivered through people, processes and technology. Working collaboratively, these services ensure that customers can shop with us efficiently, safely and securely, every single day.
Our Threat Defence service keeps abreast of the latest threat information, scans and tests our systems for vulnerabilities and provides security platforms, such as SIEM and endpoint protection, to support defence of those threats.
We are looking for an Information Security Manager to ensure the smooth day-to-day operations of our Threat Defence service.
Using your knowledge, skills and experience across threat & vulnerability management, security testing and security platforms, you’ll ensure that our team delivers a high-quality service using our resources in the most efficient and cost effective way possible. This in turn will help to ensure that the John Lewis Partnership understands its threats and vulnerabilities and provides security platforms that enable a robust defence.
What you’ll be doing:
As the Information Security Manager for our Threat Defence Service, you will be responsible for managing a team of highly skilled information security leads and analysts. You will ensure that your team provides an excellent level of service to all stakeholders, and that you also develop its proposition in line with the Information Security Strategy. In addition to this, you will also constantly challenge performance and provide feedback to all other security services in support of continual learning and improvement.
This role entails engagement with stakeholders primarily across Partnership IT teams. It’s a fantastic opportunity to be empowered to innovate alongside a supportive, collaborative and social group of security experts, and you’ll have the opportunity to grow and develop your information security career.
What you’ll have:
Management experience of two or more of the following in a large enterprise: threat management, vulnerability management, security testing, SIEM and Endpoint protection security platforms.
Proven ability to work under pressure in a fast-paced environment and succeed in ambiguity.
Experience of stakeholder management, including communicating with senior stakeholders, and working with individuals from both IT and business functions.
Strong attention to detail with an analytical mind and outstanding problem-solving skills.
Great awareness of cyber security trends and hacking techniques both internal and external to the Partnership.
Appropriate team and people management experience where you can demonstrate delivery through the empowerment of others.
What else you could bring:
Experience in creating operating procedures and processes.
Knowledge of security frameworks, such as Mitre ATT&CK and the Cyber Kill Chain.
Formal accreditation in Information Security such as a related degree, ISC2 CISSP or similar.
Why do our Information Security Partners love working for us?
“Working for the Infosec team at the John Lewis Partnership is a win-win situation; a fantastic company and a really supportive and friendly team that helps to ensure that we see the best from everyone. Cyber Security is fast-paced and varied, meaning that every day is different but here you never feel alone with new challenges as everyone pulls together togenerate innovative solutions. It’s fun and you never stop learning!” - Paul Hallett - Information Security Manager
We occasionally close vacancies early in the event that we receive a high volume of applications. Therefore we recommend you apply as soon as possible.
The application form consists of a CV upload, an online test followed by application questions. Please ensure you refresh the page each time you complete a task to ensure you complete everything that you need to in time.
We have a number of different ways to work flexibly so at your interview feel free to talk about what flexibility means to you. There are no guarantees, however, it may open the door to not only a new role but a new way of working.
We positively celebrate Diversity & Inclusion in the John Lewis Partnership. Our aim is to become the UK’s most inclusive business - for our Partners and for our customers, reflecting and connecting with the diverse communities that we serve. We want people from all walks of life to feel valued for their individuality, thrive in our business and share a sense of belonging. To find out more about D&I in the John Lewis Partnership visit this site - https://www.jlpjobs.com/about/diversityandinclusion/ We have a number of different ways to work flexibly so, at your interview, feel free to talk about what flexibility means to you. There are no guarantees, however, it may open the door to not only a new role but a new way of working.
Attachment: Cyber Security Manager - Threat Defence Job Outline.pdf
Latest IT opportunities