Job Vacancy Security Controls Manager

Home based role Help strengthen our Team as our Security Controls Manager.  Home based role.

An excellent opportunity for a Security Controls Manager to join our team to be responsible for managing and maintaining our security controls framework, ensuring alignment with industry standards such as NIST and CIS Critical Controls.

This role will focus on measuring and reporting the effectiveness of these controls, providing expert advice and guidance to control owners, and coordinating the controls steering group to drive continuous improvement.

What You'll Be Doing:

•Security Controls Management:
•Oversee and maintain Capita's security controls framework based on NIST and CIS Critical Controls.
•Effectiveness Measurement & Reporting:
•Develop and implement methods for measuring the effectiveness of security controls across the organisation.•Produce comprehensive reports on control effectiveness and maturity levels, presenting findings to senior leadership and relevant stakeholders.
•Advisory and Guidance:
•Provide expert advice and guidance to control owners on implementing and managing controls in accordance with CIS and NIST standards.
•Stakeholder Engagement & Steering Group Coordination:
•Support the Head of Security Policy with coordination of the activities of the controls steering group, ensuring alignment between security controls and business priorities.
•Risk Management & Compliance:
•Ensure security controls are compliant with relevant regulatory and legal requirements.•Work closely with the risk and compliance teams to ensure alignment between controls and broader organisational risk management strategies.
•Continuous Improvement:
•Lead efforts to enhance the maturity and effectiveness of the controls framework, incorporating lessons learned from audits and incident reviews.

What we're looking for:

•In-depth knowledge of security control frameworks, particularly NIST and CIS Critical Controls.•Proven experience in managing and measuring the effectiveness of security controls in a complex organisational environment.•Strong analytical skills, with the ability to interpret complex data and produce clear, actionable reports.•Excellent communication and stakeholder management skills, with the ability to influence and guide control owners and senior leadership.•Familiarity with risk management and regulatory requirements in the cyber security domain.•Strong organisational skills, with the ability to lead and coordinate multiple projects and initiatives.•Passionate about security and educating others.•Creative and innovative thinker.•Strong leadership and interpersonal skills.•Analytical mindset with a focus on measuring impact.•Relevant security professional certifications (e.g., CISSP, CISM, etc.)•Ability to gain SC clearance

About Capita Technology and Software Solutions (TSS) and CISO

Capita Technology and Software Solutions (TSS) is a newly formed global shared service, responsible for delivering innovation and digital transformation for Capita's businesses and clients. We work collaboratively with Capita's divisions to shape the right digital technology solutions to help clients work differently, engage differently, sell differently and to be resilient to whatever next comes their way.

Within Policy, Governance and CISO our key capabilities are to define, implement and maintain pan-Capita Cyber, Information Security and IT Policies. Defining and implementing security strategy and providing appropriate governance, assurance, asset management, risk management, privacy and health safety, to maintain compliance requirements for TSS and the wider group

What's in it for you?

•Opportunity to learn new skills and progress your career.•The opportunity to take a paid day out of the office, volunteering for our charity partners or a cause of your choice•Access to our Employee Network Groups, which represent every strand of diversity and allow colleagues to connect and learn from each other on an open, inclusive platform•Company matched pension, a cycle2work scheme, 15 weeks' fully paid maternity, adoption and