Information Security Manager

Date advertised

6 August 2019

Closing date

1 September 2019


IT, Library & Technical Services (ILTS)


IT Services

Required hours

Full Time


All three sites


£54,214 - £60,673 per annum

The Royal College of Art is the world’s leading art and design university. In 2019/20 the College will have some 2,300 students registered for MA, MRes, MPhil and PhD degrees and over 500 permanent academic, technical and administrative staff, with more than 1,000 visiting lecturers and professors. 

The Information Security Manager (ISM) will play a critical and highly active hands on role within the College in the preparation and delivery of a suitable and robust information security programme that identifies and addresses security and privacy risks.  In addition, the ISM will:

  • Take responsibility for managing the process of gathering, analysing and assessing the current and future information security and privacy threats to the College, as well as maintaining and monitoring information security best practices as they develop
  • Provide overall leadership for and oversight of the development, operation and continuous improvement of the information security processes, procedures, policies, documentation and guidance which comprise the College’s information security management systems and ensure compliance with appropriate standards.
  • Build strong working relationships with senior stakeholders and colleagues across ILTS based on a collaborative, productive, and highly flexible approach in the delivery of services and solutions, and will be expected to move rapidly at times to deliver multiple and competing projects and tasks.
  • Work with senior stakeholders across the College to drive the information security agenda and ensure that it meets complex information security demands, and will act to ensure that security controls are incorporated into all projects at the design stage and that expectations are clearly defined and agreed.

The ideal candidate will be educated to degree level or equivalent with a relevant professional industry qualification, a qualification in computing or equivalent experience and at least one relevant professional qualification from ITIL (IT Infrastructure Library).  You must have excellent interpersonal, organisational and communication skills with a high degree of tact and diplomacy. In addition, it is essential that candidates have:

  • Knowledge and experience of assurance frameworks and models such as PCI DSS, ISO27001 and ISO27002
  • Proven experience of supporting the identification, assessment, analysis and management of risk in the field of Information and Cyber Security
  • Proven experience of developing and supporting information/cyber security across a multi-site multi-discipline environment within a diverse user community
  • Proven experience of developing and implementing a range of appropriate security policies and best practice procedures
  • Substantial proven experience and knowledge of dealing with digital forensic investigations related to breaches of network security
  • Significant knowledge and understanding of current and emerging security policies, regulations and legislation with a particular emphasis on GDPR and other emerging policies and guidance from bodies such as NCSC which may affect the College
  • Proven experience of supporting research environments with specialist security requirements
  • Experience of working within an ITIL and/or service-oriented environment
  • An ability to lead and develop internal networks, actively seeking to build productive and enduring relationships between teams to strengthen working relationships and foster collaboration, influencing events or decisions.

Interviews and assessments are scheduled for week commencing 23 September 2019.

Further details:  Information Pack  
Email details to a friend

The Royal College of Art is committed to equal opportunities for all and is a Two Ticks employer & Stonewall Diversity Champion. The College particularly welcomes applications from all sections of the community and would particularly encourage members of minority groups to apply.  

Job Notifications