Job Description

JOB SUMMARY

The Information Security Manager will lead the development and implementation of AUREOS' information security and data governance frameworks. This role is critical in ensuring that data is accurate, secure, and compliant, while enabling the business to make data driven decisions with confidence.

Key Responsibilities

Data Lifecycle Ownership: Oversee the entire data lifecycle, from ingestion at the source to delivery to end clients, ensuring data integrity, quality, and compliance throughout. GDPR & Compliance: Ensure all data handling processes comply with GDPR and other relevant data protection regulations. Data Strategy & Architecture: Define and implement the organisation's data and analytics strategy, including the design of scalable and secure data architectures. Data Governance: Develop and enforce a robust data governance framework, including policies, standards, and procedures for data quality, access, and usage. Cross-Functional Collaboration: Work closely with departments such as IT, Marketing, Operations, and Compliance to gather, analyse, and integrate data from multiple sources. Process Design & Optimization: Design and continuously improve data processes to support business intelligence, reporting, and advanced analytics. Tooling & Infrastructure: Evaluate and implement data management tools and platforms that support the organisation's data needs. Manage pre-requisite steps for ISO27001 accreditation

Primary Tasks and Duties:

Develop and maintain strict principles, standards, policies, and procedures that ensure the availability, accuracy, reliability, consistency, and security of all company data stored in all systems. Ensure and enforce adherence to policies relating to data. Define roles and responsibilities related to data governance and ensure clear accountability for ownership of the company's principal information assets. Work closely with business stakeholders and data custodians to assess, understand their data to ensure these are stored in the correct systems in accordance with compliancy standards. Identify and discover data operational and regulatory risks, produce reports using Data Classification software (Varonis / Microsoft), manage GDPR data compliance, as well as supporting compliance with regulations (eg GDPR, NIS2). Work in collaboration with the external DPO resource. Provide progress reports to Board management and oversee periodic updates to the Department Data Governance Roadmap, including data governance Ensure data governance is applied to all data used in the Data Warehouse. Process Data Subject Access Request (DSAR) made by an individual under the UK GDPR (General Data Protection Regulation) within one calendar month of receiving the request. Process PQQ (Pre-Qualification Questionnaire to assess a supplier's suitability to deliver a contract before they are invited to tender) and SAQ (Supplier Assurance Questionnaire to assess a supplier's compliance and risk profile) Monitoring & Reporting: Develop metrics and reporting mechanisms to monitor data governance effectiveness and drive continuous improvement. Data Stewardship: Establish and oversee data stewardship roles and responsibilities, ensuring clear ownership and accountability for data assets.

Qualifications and Training Essential:

Microsoft Purview VARONIS or similar systems Advanced MS Excel PowerBI Data Cleansing Data Analysis Data Privacy Master Data Management Excellent knowledge of Database Design

Desirable:

Bachelor's degree in a relevant field such as Information Management, Computer Science, Data Science, Business administration, Law, etc Holding any of the below certifications is an advantage: Certified Data Management Professional (CDMP) Certified Information Management Professional (CIMP) Certified Data Governance Professional (CDGP) Certified Information Privacy Professional (CIPP/E) Certified in the Governance of Enterprise IT (CGEIT)

Skills and abilities Essential:

Excellent communication and stakeholder engagement skills. Strong experience in data governance, data management, or a related field. Deep understanding of data protection regulations, especially GDPR. Proven ability to design and implement governance frameworks and policies. Familiarity with Microsoft Purview Previous experience overseeing ISO27001 accreditation

Desirable:

Familiarity with VARONIS data management tools Familiarity with ServiceNow
Job Type: Full-time

Pay: 56,676.55-64,139.43 per year

Application question(s):

How many years of experience do you have in ISO27001 accreditation processes? Are you a British citizen/British passport holder? Kindly quote your salary expectations
Experience:

Data management: 3 years (preferred) Information security: 5 years (preferred)
Location:

London EC1A 2DJ (preferred)
Work Location: In person