VWV has an ambitious roadmap for our strategic period, and as the Information and Cyber Security Manager, you'll play a key role in driving this forward. Your leadership will be essential in achieving the firm's security objectives and target maturity levels.

To hear more from Dave, the Director of Digital Data and Technology check out this short video - https://youtu.be/t1HtxLrY5po

About the Opportunity

As the Information and Cyber Security Manager, you'll be responsible for establishing and revising the information and cyber security strategy, managing risk and security compliance concerning operational changes and emerging threats, and leading the information and cyber security team along with third-party suppliers to achieve organisational goals. You'll oversee IT operational aspects of the security management system, drive continuous improvements in all areas of information and cyber security, and develop and manage information security policies, procedures, and standards. Ensuring external suppliers meet their KPIs and contractual responsibilities is also part of your role.

You'll oversee vulnerability management across the firm, identifying, diagnosing, and remediating security threats while implementing and maintaining security technologies and best practices. Ensuring robust security incident response procedures and providing risk and compliance guidance to projects and operational teams is a key aspect of this role. Compliance responsibilities include managing ISO standards and Cyber Essentials Plus adherence, collaborating with the Compliance team for audits, ensuring security alignment of firewalls, access control, SQL, exchange, and cloud services, maintaining security policies and procedures, generating security reports, and driving continuous improvements.

Risk management will be key, including assessing security impacts of system changes, leading disaster recovery planning, and reporting risks. You'll mentor the security team, advise senior leaders, support IT teams, and drive a cyber awareness programme. Managing security documentation and staying up to date with industry trends will also be vital.

About You

We're looking for a leader with a strong background in cyber security, preferably within a complex or regulated environment. You should have a deep understanding of security frameworks such as ISO 27001, Cyber Essentials Plus, NIST, and PCI-DSS, as well as hands-on experience with vulnerability management, threat detection, and incident response tools such as SIEM, EDR, WAF, and penetration testing.

A solid understanding of GDPR, data privacy regulations, and information security governance is essential, along with experience implementing and maintaining security policies, risk management processes, and compliance controls. You should have the ability to assess and mitigate security threats, manage security incidents effectively, and ensure operational resilience.

Technical expertise in areas such as cloud security, network security, access control, encryption, and endpoint protection is important. Knowledge of security monitoring, configuration management, and secure software development practices is highly beneficial. Experience working with external suppliers and managing security service providers is also desirable.

In addition to technical expertise, excellent communication and stakeholder management skills are critical. You must be able to engage with technical and non-technical teams, provide clear security guidance, and influence security best practices across the firm.

If you're passionate about cybersecurity and ready to make an impact, we'd love to hear from you.

About Us

There are so many reasons to stop and explore VWV further.  We're known for our friendly and welcoming culture where teamwork and collaboration are key.  There's no pigeon-holing or glass ceilings here, just a professional yet relaxed culture where you can finally be yourself.  We invite you to watch this short video on the right-hand side to see what our own people have to say about us.

We're striving to be an inclusive employer, to create a workplace and environment that promotes and values diversity, where everyone, regardless of background, can reach their full potential. Contact our recruiter to discuss any adjustments needed so we can make this the best possible candidate experience for you.

How To Apply

All you need to do is click on Apply Now to submit your CV and covering letter telling us why this is the opportunity for you.

Polite Note to Recruitment Agencies:

We're in a period of exclusive direct sourcing for this role and are not accepting applications from agencies. We politely request therefore that you do not send candidates through.  Any named or anonymised profile or CV sent to us will be deemed an unsolicited approach and treated as a gift.