• Information Security Risk Manager

    Job Locations UK-London
    Job ID
    # of Openings
    Business Entity
    Octopus Group
    Legal & Compliance
    Temporary Full-Time
  • Overview

    About Octopus


    Octopus is a fast-growing company with more than 700 employees. Since we launched in 2000, we’ve established market leading positions across financial services, healthcare and energy. Right now we’re in the process of moving from a singular business (Octopus) to a broader group structure incorporating Octopus Energy, Octopus Ventures, Octopus Investments, Octopus Property and Octopus Healthcare.


    The main role and responsibilities of the Information Security Manager is to provide support and advice to the business on all aspects of information risk, including information security, data protection and privacy.  To manage information security governance projects and initiatives. To assist the business to define appropriate controls to manage the risks associated with all information (including personal data and business information) regardless of its medium.  To provide necessary guidance and direction to ensure we comply with information security and data protection legislative and regulatory requirements and relevant industry best practices.


    Essential Job Functions

    • Responsibilities will include but are not limited to:
    • Liaise with IT Security and business areas to ensure that information security and data protection requirements are defined, understood and reflected within IT solutions;
    • Manage and complete information risk and information security reviews, including due diligence of third parties;
    • Develop, maintain and generate monthly reports for senior management and the Board; present at senior management forums and committees as required;
    • Promote information security controls and process throughout the Group;
    • Identify and provide the Group with current information about information security and data protection regulatory issues with which it needs to comply
    • Identify, resolve and assist in management of security threats, vulnerabilities, non-compliances and risks, focussing on data leakage prevention
    • Respond to security events and incidents (co-ordinate business unit response and remediation)
    • Perform deep dives on data leakage, including root cause analysis of issues, proposing tactical and strategic solutions; and influencing key stakeholders to deliver necessary control enhancements.
    • Support delivery of a programme of work to ensure compliance with the Group Cyber Information Management and Security posture across the local business, principally covering, information/data security.
    • Provide information security advice and direction to projects and business initiatives as required. Ensure change initiatives incorporate information security requirements.
    • Conduct testing to confirm and evidence that key controls are operating effectively


    Job Specific Experience/Technical Skills/Abilities

    • To be successful in the role, you will have relevant experience in an IT / Information Security role as well as extensive knowledge of Information Security and Cyber risk and control frameworks and practical experience of implementing risk management improvements or performing oversight. You will be an excellent communicator both written and verbally, and have a strong track record of building positive relationships at a senior level and providing constructive support and challenge to Directors. 
    • The successful candidate must have strong technical background and experience of information security and of data leakage prevention.
    • A strong understanding of different application and infrastructure technologies is required
    • Demonstrable relationship/stakeholder management and negotiation skills
    • Strong communication skills (written and verbal) that can transcend both junior and senior audiences; the ability to articulate complex concepts to senior management is essential.


    Our Values


    Be helpful

    Random acts of kindness make the workplace a better place so, go out of your way to be helpful, and give people reasons to smile


    Be straightforward

    Life is complicated enough. Don’t make it harder for yourself, or for others. Sometimes the simplest approach works wonders.


    Be bold

    Every great business started with a flash of inspiration. If you’ve got a great idea, don’t keep it to yourself.


    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed