Search for jobs via job title or by location using the fields below:

Search Vacancies


IT Security Standards Manager

Purpose of role

Supporting the IT Security & Applications Manager in all aspects of IT Security for the SWR business including:

  • Curate the IT Security Policy and Process library ensuring documents are reviewed and updated to the required schedule.
  • Maintain and update the IT Security incident response plan and supporting documentation also coordinate of incident response plan test events
  • To ensure technical vulnerability assessments of IT systems and infrastructure are completed to the required schedule, any vulnerabilities identified are followed through to resolution
  • Support the IT team in responding to IT security incidents, guiding key players around process, requirements for computer forensics for evidence gathering and preservation of evidence and liaison with impacted parties within the business.
  • Responsible for the coordination of regular Information Security Reviews in the organisation by conducting assessments of, processes and infrastructure and making recommendations to minimise any risks identified.
  • Conducting reviews to ensure that IT Security policies and procedures are adhered to. To be proactive in making recommendations for updates to policies & procedures as required.
  • To maintain the IT Security communications plan, providing and commissioning, as appropriate, high quality Information Security guidance documentation, training materials and dissemination to the SWR business.
  • To lead by example and provide good security guidance and advice on best practice to the IT team and managers and staff at all levels
  • To a point of contact for SWR staff members of the seeking advice on information security.
  • To oversee the IT security risk register and progress actions to mitigate risks identified
  • To administer IT Security meetings, maintaining records, actions and ensuring follow up on issues where required.
  • Participate in IT Security Improvement projects as required providing input and support.
  • Work with the Group and SWR Procurement teams to ensure that IT Systems, Equipment and Servers suppliers are appropriately assessed for IT Security issues and the assessment process is kept up to date.
  • To liaise First Group IT security where required and ensure that any information requested is provided on a timely and secure basis, where required to represent the organisation in Information security fora.
  • To keep up to date with security trends, threats and control measures, where appropriate to participate as appropriate in Information security manager communities (particularly those working within the railway industry)
  • To maintain high levels of professional conduct, including but not limited to: co-operative engagement in tasks set; the exercising of initiative to suggest improvements, working through line managers to deliver improvements; maintaining clear and professional styles of communication at all times.


Key accountabilities

  • Ensure IT security policy and process documentation within the IT department is maintained in a structured complete and up to date and communicated
  • Ensure that IT Security incidents are captured and appropriately followed up
  • Support and contribute to the delivery of organisational objectives
  • Administration of IT Security Meetings supporting documentation and follow up actions
  • Participate in the process with business support and procurement to ensure that supplier engagement processes have been followed and are up to date for all suppliers of IT systems and services to the SWR business
  • Supporting the implementation of IT security Strategy, covering policies, partners and toolsets
  • Supporting the delivery of the communication plan to the IT Team and the business on IT security issues
  • Regular reporting to First Group on IT Security issues
  • Maintain excellent communications and provide regular progress updates with other team members and IT the business
  • Manage safety activities and take necessary action within own area of responsibility to ensure the safety of all staff.  This includes working in safety critical locations, near the railway and supervising others in or near these sites.
  • Support any franchise/committed obligations within area of responsibility are met.
  • Shared responsibility in finding ways to reduce expenditure and ensuring correct solution is identified so costs not incurred unnecessarily.


Skills & Experiences Required:

  • Anticipating & moving pro-actively to mitigate issues
  • Working collaboratively with teams at all levels
  • Experience in IT Security organisation
  • Good written & verbal communication skills
  • Good inter-personal and presentation skills i.e. public speaking, communicating ideas and solutions etc.


Skills and Qualifications that are beneficial

  • Software Product Development and Management experience
  • Software Support experience
  • Project Management experience
  • Strong communication skills
  • Experience of stakeholder management
  • IT Security
  • IT Documentation
  • Documentation and management and business process


Person Specification

  • Able to demonstrate the ability to undertake the above responsibilities
  • Legally able to work in the country in which the position is based
  • A passion for technology
  • Experience of managing 3rd parties and 3rd party delivered services
  • Excellent written and verbal communication skills
  • Willingness to support and mentor junior staff
  • Excellent customer facing/customer service skills
  • Able to work under pressure and meet deadlines
  • Able to demonstrate a high degree of flexibility including shift and out of hours working
  • Excellent organisational skills
  • Able to manage sensitive and sometimes confidential information
  • Self-motivation and able to take responsibility
  • Able to manage and prioritise and tasks and time efficiently
  • Able to demonstrate initiative and a proactive approach to daily tasks
  • Possess excellent problem-solving skills

Close map
South Bank Central
30 Stamford Street, South Bank, London, England, SE1 9LS
  • Ref:
  • Company:
    South Western Railway
  • Website Skillset:
    All Other Roles
  • Contract Type:
    Permanent - Full Time
  • Full Time / Part Time:
    Full Time
  • Contracted Hours:
  • Location:
    South Bank Central
  • Closing Date:
    26 July 2019
Share this page
Vacancy Alerts
Create an alert subscription based on this vacancy