Job Description – Knowledge Transfer Network – Information Security Knowledge Transfer Manager

Job Purpose

To lead the Information Security project within the Knowledge Transfer Network, reporting to the Senior Manager for ICT. The role of a Knowledge Transfer Manager of KTN Limited is to provide operational direction to their project or activity and strategic input into other projects or activities from their expertise.

Grade: Manager

Location: Home based, UK

Key accountabilities

·  To provide leadership in the awareness and adoption of standards and best practices in the area of Information Security.

·  To build a community of industry experts and practitioners to facilitate the identification of key standards and best practices to meet a prioritised list of industry security challenges.

·  To deliver a programme of events and activities enabling the growth of the community including publishing online information, in partnership with interested parties.

·  To participate in cross-KTN initiatives and Special Interest Groups where expertise in this area is required.

·  To provide strategic guidance and challenge to KTN Senior managers and Directors on future direction within their area of expertise and provide informed comment within the industry.

·  To ensure the delivery of all key performance indicators across their activity or project.

Job scope

·  A manager will be responsible for an activity or project of importance to KTN Limited

·  Each manager may have up to 10 staff reporting to them

·  Each manager will provide expert guidance to other specialists, managers, senior managers and directors in their areas of expertise

Job responsibilities

1)  Scope out the area of responsibility commensurate with Technology Strategy Board and Senior Management input.

2)  Recruit a core team of industry experts to provide advice and guidance to the programme through an Information Security Working Group.

3)  Develop a plan of events and activities to meet the requirements of these stakeholders in a timely fashion. The primary aim being the establishment of an active community of experts and practitioners.

4)  Develop a body of knowledge and understanding which equips the job-holder with an “expert” status for provide understanding and guidance across the stakeholder communities.

5)  Undertake specific project work as required beyond the core nature of the role, assuming that the expertise of the job-holder is an essential part of that project. An example is the Personal Data, Privacy and Trust initiative currently being planned between the Connected Digital Economy Catapult, Creative and Applied teams and Research Councils.

6)  Provide leadership and support for the KTN management team across all of its related activities. Be the “Information Security” expert for the KTN community as a whole.

Experience and qualifications

  1. Demonstrate a sound understanding and experience of security management processes at all levels, including the security of personal data and application of the Data Protection legislation. A bonus would be an understanding of the use of integrating and demonstrating adherence to security principles in software and service development.
  2. Solid project management experience including management of staff and large work packages. Ability to balance competing requirements is essential, with a corresponding ability to manage stakeholder expectations.

3.  Relevant business experience in ICT operations or with an ICT supplier.

  1. Appreciation and experience in identifying areas for innovation, and plans for their delivery.

5.  Experience of change management in business situations, particularly where new processes are introduced and risks to project plans are managed proactively.

6.  An ability to work with the Government agencies on practical guidance for information security and personal data protection would be advantageous.

7.  Experience of operating in complex organisational environment

Competencies

1.  Excellent communications skills

2.  Demonstrable operational skills

3.  Leadership and management skills

Education and Training

1.  Degree level qualification, or equivalent professional qualifications, in a relevant area. (IT, Communications, Software Engineering, Information Assurance, etc.).

2.  Training in Security fields including relevant industry standards (e.g. ISO 27000, PCI, Government IL3, etc.)

3.  Technical Management training an advantage, including project management and communications.