This job post is closed and the position is probably filled. Please do not apply.

Jobs search

JOB DETAILS

Information Security Manager

John Lewis • fulltime • Bracknell Campus, UK • 2w ago

A warm welcome from The John Lewis Partnership! Thanks for your interest in joining us.

The Partnership is a company that celebrates the uniqueness of each individual. Here,you’re not just an employee, you’re a Partner, and you’re valued for being your authentic self.

We offer a range of incredible benefits that set us apart, including significant discounts, VIP hotel suites, flexible working arrangements, equal parenthood leave and more. Our business is a dynamic retail network, but it’s so much more than just retail.

We are branching out into other sectors like built-to-rent, financial services, technology offerings and more, featuring diverse departments that offer an extensive array of products, food options, experiences, and services.

We are dedicated to both the people we serve and the Partners who contribute to our success. For that is the shared purpose that drives us. By working together, in Partnership, we are creating a place with happier people, for a happier business and a happier world.

What’s the role about?

The John Lewis Partnership (JLP) Information Security strategy is bold and ambitious. We provide a collection of security services, delivered through people, processes and technology. Working collaboratively, these services ensure that customers can shop with us efficiently, safely and securely, every single day.

The key purpose of the Information Security Incident Response team is to protect JLP data and systems by proactively detecting and responding to cyber security threats. We are the front line of cyber defence: monitoring and assessing cases, correlating observables, mitigating and defending against malicious cyber activity and adapting to an ever-changing threat landscape. We constantly engage with key stakeholders from across the business, third parties and our customers.

If you’re passionate about cyber security, if you thrive and perform in fast-paced, high-demand scenarios, and if you want to make a real difference at the UK’s largest co-owned retailer, then this role is for you. Additionally, as JLP adds to its already successful cloud adoption with a full data centre migration and technology modernisation programme, it's a great time to be around!

What you’ll be doing

As the Partnership’s Information Security Manager for our Incident Response Service you will be responsible for managing a team of highly skilled SOC analysts and an outsourced service provider covering 24x7x365 monitoring.

You will ensure that your service provides an adequate and proportionate response to any information security incidents that arise by owning and developing the run-books and operating procedures used, the proactive testing of the Partnership’s response and the leadership of incident management - including the flexing of hours in the event of a major occurrence.

You will also constantly challenge performance and provide feedback to all other security services in support of continual learning and improvement.

It’s a fantastic opportunity to be empowered to innovate alongside a supportive, collaborative and social team of security experts, and you’ll have the opportunity to grow and develop your cyber security career.

Why do our Information Security Partners love working for us?

“The JLP InfoSec team is a fantastic place to work and develop your career. You spend your time in a positive, supportive environment where your personal strengths are truly valued.

There's nothing like working together in order to defend a business that you co-own from all kinds of cyber threats.”

What you’ll have:

Whilst what we’ve noted here is for our perfect candidate, we do understand that people are at various stages of their career and we provide an environment for personal development in weaker areas.

Experience of working in and a strong understanding of the cyber security landscape, including types of threat, attack types and controls

In depth experience of cyber-incident detection, response, resolution and review, the associated management life-cycles and resolution activities across a variety of separate resolver groups

People leadership skills with a proven track record of getting the best out of people

Experience of communicating to and managing senior stakeholders at all levels

Experience of working within a service management framework, such as NIST, MITRE, COBIT or ITIL

Ability to work with competing priorities

Experience of working with 3rd party service providers.

What else you could bring:

Prior line management experience

Leadership of teams of technical experts and delivering results through others

Expertise across any of the following : ServiceNow, JIRA, Splunk, Cloud SIEMs or other Security Event Logging. EDR/XDR, Threat identification, Risk, Vulnerability, UEBA

Experience in creating BAU runbooks, table top testing exercises, use-case definitions and operating procedures

Relevant technical qualifications, such as CISSP, CISM, E/CIH, GCIH, CompTIA Security+ or equivalents

Experience managing 3rd party relationships and holding 3rd parties to account for service delivery.

Benefits:

💻 - Hybrid Working.

⚖ - Excellent work life balance, including focus on well being and flexible working and our market leading Equal Parenthood Leave Policy

🏖️ - Full - time working holiday entitlement 25 days holiday, plus public and bank holidays

🐷 - Defined Contribution pension scheme where your contributions will be matched by the Partnership (up to 8% of pay) and, after three years’ service, you’ll receive an additional Partnership contribution of 4% of pay, regardless of whether you pay in or not

🤑 - You’ll get Partnership discount in store and online once you complete Probation. That’s 25% off in John Lewis & Partners (12% off electrical products) and 20% in Waitrose & Partners. You’ll also be able to nominate someone you live with to share your discount

🚴 - Simple cycle to work support scheme

🏰 - We’re really proud of our exclusive hotels based in some of Britain’s most beautiful areas and once you’ve been with us for three months, you’re welcome to explore them

🌱 - Learn more about our Benefits structure, visit - https://www.jlpjobs.com/about/benefits/

Next Steps

The application form consists of online assessment, CV upload, followed by application questions. Please visit - https://www.jlpjobs.com/how-to-apply/journey/ to understand more about application and hiring process

Visit - https://www.jlpjobs.com/head-office/it/ to learn more about our Technology and Change and Infosec specialist areas

Internal applicants - please copy paste this link to your browser for job outline - https://bit.ly/InfosecIncidentMgmt

We occasionally close vacancies early in the event that we receive a high volume of applications. Therefore we recommend you apply as soon as possible.

#LI-HEADOFFICE

#LI-HYBRID

#LI-LS1