Control Testing & Assurance Manager

As the Control Test and Assurance Manager, you will be part of the Information Security team, particularly focussed on setting up and running the Control Test and Assurance Programme in planning, organising, overseeing, and delivering the testing for each area of Information Security, across Information Technology, Operational Technology, Business Lines and Functions. Ensuring execution of a comprehensive and thorough test plan to ensure overall Policy Effectiveness.

In addition to the standard tester skillset, this role requires you to have solid experience in Information Security, user engagement/communication, test planning, documentation, execution, reporting etc [including the ability to implement a testing approach and methodology], with a technology/functional understanding of business and operational systems, along with a good grasp of necessary business processes and compliance in these areas.

The role will report directly to the Chief Information Security Officer, with whom you will work to deliver the goals of the company to have a stable and fit-for-purpose control
testing environment that can grow alongside the business.

What you’ll be doing as a Control Testing & Assurance Manager

This role is required to assure as to the design and operational effectiveness of the Information Security Policy and Standards.  It is a critical part of any cyber security program that controls are deployed and then tested to ensure that they provide the level of security that they should.

• Design and Develop a Control Testing Methodology which involves drafting, socialising, and putting into practice a control testing methodology which will test the controls from the InfoSec Policy and Standards.
• Customise and localise standard test scripts and then evaluate assigned controls for design and operational effectiveness, raising issues as appropriate.
• Ensure that assigned control assessments are accurate and effective, abide by procedures and templates and meet quality control requirements.
• Ensure that assigned control assessments are delivered on time, in accordance with the assessment plan.
• Supervise the delivery of assigned control assessment using experience and knowledge to intervene and redirect testing as required, resolving or redirecting escalations as required.
• Manage control owners and other stakeholders, ensuring the success of each assigned review, minimising contention where possible and requesting support where necessary.
• Manage the documentation of distinct control types, covering key aspects, such as remit, main processes and handovers to other teams.
• Generate consistent materials for test plans, test results and test reports for both design and operational effectiveness.

Base Location – Hybrid – Clear Water Court Reading.

Working Pattern – 36 hours.

What you should bring to the role as a Control Testing & Assurance Manager
Essential

• High level of experience in Cyber security.
• Experience in Technology [IT, OT, Cloud Platforms], Information Security and IT/ OT Risk Management.
• Working knowledge of Information and network principles.
• Working knowledge of current IT [and/ or OT] risks.
• Ability to work with broad requirements and formulate concise tailored responses.
• Proven ability to design and deploy a Control testing methodology from scratch.
• Certified in Risk and Information System Controls.
• Certified Auditor or proven Audit Experience.
• CISSP or similar Information Security qualification.
• Excellent understanding of detailed business processes and business needs.
• A technical qualification of any security-associated discipline.
• Continuous testing experience.

Desirable

• Experience working in a regulated environment.

What’s in it for you?

• Competitive salary of up to £96,806 per annum depending on experience.
• Annual Leave - 26 days holiday per year increasing to 30 with the length of service. (Plus bank holidays)
• Car Allowance - £5,800.
• Annual Bonus – On target - 15% stretch – 30%.
• Generous Pension Scheme through AON.
• Private Medical Health Care.
• Access to lots of benefits to help you take care of your and your family’s health and well-being, and your finances – from annual health MOTs and access to physiotherapy and counselling to Cycle to Work schemes, shopping vouchers and life assurance.

Find out more about our benefits and perks

Who are we?

We’re the UK’s largest water and wastewater company, with more than 16 million customers relying on us every day to supply water for their taps and toilets. We want to build a better future for all, helping our customers, communities, people and the planet to thrive. It’s a big job and we’ve got a long way to go, so we need help from passionate and skilled people, committed to making a difference and getting us to where we want to be in the years and decades to come.

Learn more about our purpose and values

Working at Thames Water

Thames Water is a unique, rewarding and diverse place to work, where every day you can make a difference, yet no day is the same. As part of our family, you’ll enjoy fast-tracked career opportunities, flexible working arrangements and excellent benefits.
Whether you’re interested in a role in one of our call centres or science labs, we’re looking for people like you with real passion and a burning desire to make things better.

So, if you’re looking for a sustainable and successful career where you can make a daily difference to millions of people’s lives while helping to protect the world of water for future generations, we’ll be here to support you every step of the way. Together, we can build a better future for our customers, our region and our planet.

The real purpose, real support, real opportunities. Come and join the Thames Water family. Why choose us? Learn more.

Our overarching aim is to ensure that Thames Water is a great, diverse and inclusive place to work. We welcome applications from everyone and offer extra support for those who need it throughout the recruitment process. We aim to remove any real or perceived barriers to success, so if you need assistance, we’re here to help and support.

When a crisis happens, we all rally around to support our customers. As part of Team Thames, you’ll have the opportunity to sign up to support our customers on the frontline as an ambassador. Full training will be given for what is undoubtedly an incredibly rewarding experience. It’s also a great opportunity to learn more about our business, meet colleagues and earn some extra money along the way.

Disclaimer: due to the high volume of applications we receive, we may close the advert earlier than the advertised date, so we encourage you to apply as soon as possible to avoid disappointment.