Information Security Risk Manager

Careers Jaguar Land Rover, Lighthorne, Warwickshire

Information Security Risk Manager

£90000

Careers Jaguar Land Rover, Lighthorne, Warwickshire

  • Full time
  • Permanent
  • Onsite working

Posted 2 weeks ago, 7 Dec | Get your application in now before you miss out!

Closing date: Closing date not specified

job Ref: 8248bff991ad484e946e1b05b55d7a69

Full Job Description

This is a fantastic opportunity for an Information Security Risk Manager to join JLR's Information Security Governance, Risk, and Compliance department, which is responsible for protecting the company's digital landscape while ensuring regulatory compliance. As an Information Security Risk Manager, you will oversee the delivery of risk processes for information security across JLR while also supporting other functions such as IT, governance, compliance, security culture, and supply chain security assurance. Furthermore, you will contribute to JLR's information security strategy to strengthen the company's overall security posture. This is an exceptional chance to work in a dynamic, growing team and play a critical role in protecting JLR's information assets globally. Key Accountabilities and Responsibilities:

  • Create and execute effective risk management policies and strategies across all business domains globally.
  • Conduct comprehensive audits and risk assessments to find threats and vulnerabilities and support the evolution of the Information Security Strategy, with an emphasis on risk reduction.
  • Work with cross-functional teams to prioritise risks and develop risk treatment plans.
  • Establish monitoring mechanisms and key risk indicators (KRIs) to proactively address security concerns.
  • Oversee and guide the Vulnerability Governance process from a risk perspective.
  • Offer guidance and recommendations on risk management best practices.

    Strong knowledge of information security processes, functions, and practices, including strategy development, risk identification, documentation, management, and mitigation.
  • Good understanding of information security standards such as ISO27001, NIST CSF, SCF, COBIT, and relevant legal frameworks such as GDPR.
  • Broad understanding of technical, organisational, and procedural controls, as well as knowledge of the information security tooling and vendor landscape.
  • Proficient communication skills in communicating technical information effectively, both verbally and in writing, and adapting content to suit technical and non-technical audiences.
  • Experience with Agile methodologies (e.g., SAFe, SCRUM).
  • Previous experience in managing information security in highly regulated businesses.
  • Creating Modern Luxury requires a modern approach to work. At JLR, hybrid working is a voluntary, non-contractual arrangement providing employees more choice and flexibility around how, when and where they work. Some roles require more on-site work, but details of this can be discussed with the hiring manager during the interview stage.

    JLR's Information and Digital Technology team is a place where you can unleash your technical ability. Whether expertly supporting applications, managing digital products, architecting solutions, or securing our platforms, you'll work alongside other tech experts to shape our digital landscape and provide a stable platform for our operations. Stay at the forefront of innovation, and use cutting-edge technology to reimagine the future of modern luxury - be a proud creator of the exceptional.

    Job Segment: Information Security, Risk Management, Supply Chain Manager, Information Technology, IT Manager, Technology, Finance, Operations