Manchester City FC banner
Manchester City FC logo
Job listing closed on 19 Aug 2024
27 Jul 2024

Cyber Compliance & Audit Manager

🇬🇧 Manchester, UK
Full Time
5+ years exp.

Location:

Manchester, GB

Opening Date: 23 Jul 2024

Full Time / Part Time: Full Time

Contract Type: Permanent

Closing Date of Applications - 06/08/2024

Our Story

Established in 2013, City Football Group is the world’s leading private owner and operator of football clubs, with total or partial ownership of twelve clubs across the world. City Football Group also invests in other football related businesses and serves as a global commercial platform for our partners, whilst fulfilling our purpose of empowering better lives through football on a local and global scale, consistent with what “City” football has meant to people for over a century.

Our Winning Team

Our purpose is to empower better lives through football. We are proud of the role City Football Group clubs play in their localities, delivering positive economic, social and environmental impact through our operations and through programmes and activities that bring about meaningful, lasting change.

Within this role we aim to deliver a range of ‘para-professional’ corporate support activities across City Football Group.

This role is integral to the CFG’s Information Security Team which is responsible for protecting, supporting, and maintaining a high level of Information Security across the City Football Group.

This is a high-profile role, covering all aspects of Information and Cyber Security specialising in Compliance and Audit, technical elements, as well as policy risk management.

You will work closely with the wider Technology Department and our Cyber Security Partners, ensuring the delivery of Information Security Services into the Global Group and meeting and confirming the high levels of Information Security is delivered to the highest standards.

The role has a high degree of flexibility, and the right candidate will be able to operate independently, adapting their approach depending on the circumstances of the requirement. They will have to balance ensuring that business operations are secure, without impacting on the ability of the business to operate.

This is Your City

As part of our team, you will be entitled to 26 days annual leave plus an additional day off for your birthday, private healthcare and a simply health cash plan, an annual discretionary bonus, plus a range of partnership and lifestyle discounts.

Your Impact

1. Provide audit and compliance guidance and/or supervision to functional work/project priorities; co-ordinating day-to-day activities and outputs across projects.

Acting as a lead delivery resource on project work streams related to area of specialism; supporting project delivery to time cost and quality standards to ensure the highest levels of Cyber Security Compliance.

2. Undertake audits and compliance investigations across the business, either as an individual contributor or through a small specialist service delivery team. Focus will be on the Clubs and ensuring risk mitigation and Cyber Compliance plus Third Party Supplier Risk Management. Planning is primarily focused across weekly to monthly time horizons to ensure that all Clubs are compliant.

3. Influence project outputs through the appliance of strong cyber security knowledge, and the building of rational arguments, to influence decision making.

4. Plan and implement regular reviews of systems, processes, and practices within area of specialism to identify opportunities for improvement considering the changing needs of the Group.

5. Define and select the appropriate and corporate service solution from known applications, following a wider range of procedures to deliver across the business

6. Outputs will be focused primarily on the delivery of corporate service input onto organisational projects. Whilst work will be under minimal managerial supervision, further professional/technical support is widely available.

7. Focus on delivery of business as usual support across all CFG Clubs and Functions, focusing on those that carry the highest risk profile, from an area of a specific corporate service specialism to inform project/organisational decision-making.

What we are looking for

Essential

  • A passion for cyber security and a keen interest in IT
  • An understanding of the cyber security risks associated with various technologies and ways to manage them
  • Analytical and problem-solving skills to identify and assess risks, threats, patterns and trends
  • Teamworking skills in order to collaborate with team members and other Functions
  • Verbal communication skills, with an ability to communicate with a range of technical and non-technical team members and other relevant individuals
  • Good written communication skills, for example to write reports
  • Good time-management and organisational skills to manage a variety of tasks and meet deadlines
  • Advanced knowledge of NIST, ISO, SOC and/or related frameworks such as CIS Controls

Desirable

  • Good time-management and organisational skills to manage a variety of tasks and meet deadlines
  • Ability to multi-task and prioritise your workload
  • An ability to work under pressure, particularly when dealing with threats and at times of high demand
  • IT / Cyber Security Qualification (eg CISA, OSCP, CISSP, GIAC GCIA, Security+)
  • Working knowledge of application & infrastructure security solutions (Firewalls, Intrusion Detection/ Prevention Systems, Network Security, Password Management, Data Encryption, and Access Control)
  • Experience in delivering support across multiple locations
  • Experience with Microsoft Intune Device Management and Azure Information Rights Management
  • Experience of ITIL Foundation v3.

City Football Group promotes equal opportunities in employment and we positively welcome applications from all candidates regardless of age, disability, gender reassignment, marriage and civil partnership, pregnancy and maternity, race, religion or belief, sex and sexual orientation.

We will screen all applicants and select candidates whose skills and experience seem to meet our needs. We will carefully consider your application during the initial screening and will contact you only if you are selected for an interview.

Employment is subject to the provision of proof of eligibility to work in the UK.

Due to our safeguarding promise, all UK based CFG roles will be subject to a DBS check upon commencing employment with us. This will be either a basic, standard or enhanced check depending on the job role and responsibilities.


Job Segment: Cyber Security, Information Security, Network Security, Risk Management, Compliance, Security, Technology, Finance, Legal

Closed