IT Security and Continuity Manager

The Challenge:

Would you like to be at the heart of developing innovative and transformative ideas? Are you interested in being part of a team that identifies how space technology can address UK and global societal challenges? Do you want an IT Security and Continuity Manager position which will make a real difference? If so, you may be who we’re looking for!

We are currently seeking an IT Security and Continuity Manager to work with our IT Team.

Reporting into Head of IT & Business Systems, this is a highly networked role that requires an ability to work under pressure and to challenging deadlines. It requires collaboration, process management and analytical skills. Location is our office in Harwell Oxfordshire, flexible hybrid working is possible with 3 days a week required on site.

Key Responsibilities:

1. Security Management:

• Develop, implement, and continually update comprehensive security policies and procedures to safeguard the Catapult's data, intellectual property, and digital infrastructure.

• Conduct thorough security risk assessments and regular audits to proactively identify vulnerabilities and recommend effective mitigation strategies.

• Design and implement the roadmap for the company to achieve ISO 27001 certification, overseeing the implementation of necessary controls and processes to meet this internationally recognised standard for information security.

• Manage the Catapult's adherence to security standards, including the renewal of certifications such as Cyber Essentials Plus, ensuring compliance and readiness for external audits.

2. Continuity Planning:

• Take the lead in formulating and maintaining robust business continuity and disaster recovery plans, ensuring they are aligned with the Catapult's strategic objectives.

• Coordinate and execute resilience exercises and drills to evaluate and enhance the organisation's preparedness for emergencies, ranging from natural disasters to cyber incidents.

3. Information Security:

• Maintain unwavering compliance with stringent data protection regulations and industry standards, guaranteeing the confidentiality and integrity of sensitive information.

• Manage and oversee the lifecycle of information security incidents and breaches, including detailed reporting, thorough investigations, and swift remediation.

• Provide expert guidance on secure data handling, storage practices, and encryption methods to uphold data security standards.

4. Security Awareness and Training:

• Spearhead the development and execution of engaging security awareness programmes tailored for employees and contractors, fostering a culture of security consciousness.

• Deliver specialised training sessions that equip the Catapult's workforce with the knowledge and skills required for adhering to best security practices and responding effectively to security incidents.

5. Vendor and Supplier Management:

• Evaluate, select, and manage security vendors and contractors (in relation to the Catapult’s procurement processes), ensuring they align with the Catapult's security requirements and standards.

• Continuously monitor the performance and compliance of third-party providers, holding them accountable to contractual obligations and security expectations.

6. Incident Response:

• Assume a leadership role in responding to security incidents, from their initial detection through containment and resolution phases.

• Collaborate seamlessly with internal teams and external security experts to orchestrate a rapid and well-coordinated response to security threats, minimising potential damage and ensuring the Catapult's operational continuity.

• Conduct lessons-learned exercises on security related matters.

Skills & Experience required:

• Excellent communication and interpersonal skills.

• Experience of implementing cyber security within an innovation/R&D environment.

• Confident speaking to both business stakeholders and technical third-party contractors.

• Proven experience of cyber/information security work.

• Technical understanding & experience in/of networking and infrastructure concepts.

• Capable of managing own workload and proactive in seeking out solutions.

• Confident in communicating cross-team.

• Experience of implementing Cyber Essentials+

  Behaviours expected:

• Continuous Improvement

• Decisive Thinking

• Collaborative

• Driven to deliver

• Attention to detail

• Flexibility and adaptability

• Courage to challenge

Qualifications:

• CISM Certification.

• ISO 27001 Lead Implementor Certification.

You know you have been successful when…

• Catapult staff are receiving ongoing cyber/information security training.

• The Catapult’s cyber/information security processes adhere to ISO 27001 standards.

• A culture of cyber security awareness exists within the Catapult.

The purpose of your new team:

Our vision is to provide a safe and secure. digital environment within which our staff can work. With security being seen as an enabler and not an impediment to innovation

How we work:

We strive to create a high trust environment that enables team members to bring their whole selves to work – this helps to create the foundations of an innovation culture. Our shared values are critical to this:

• We care - for our people, our partners, and our planet

• We connect - and engage with people and ideas

• We learn - and grow, as people and as an industry

Underpinning this is our belief in great teams, our combined efforts will always deliver outcomes beyond that of any individual providing we are honest through debate, experiment and reflect, and create shared resolutions in support of our purpose. Live these values, work to our principles, take ownership to deliver, and we are certain you will thrive with us.

Important notice for applicants: We use tools to detect plagiarism and the use of AI or chatbots for applicant answers. If plagiarism, AI use (such as ChatGPT) or similar software are found to have been used in your application you will not be considered for this or future roles within the Satellite Applications Catapult

At Satellite Applications Catapult, we're committed to fostering an inclusive and diverse workforce. We welcome candidates from all corners of the globe, but due to legal and logistical considerations, we want to be transparent about the potential visa-related challenges that could arise. Our ability to offer sponsorship will depend on the level of interest for our roles and salary level.