Menu

Head of IT Security

Cyber Security - London
Our client is a major UK business offering tax, audit and assurance, and a range of advisory services.

This role will be required to create and develop a cyber security team in order to carry out a variety of activities, including very tactical, operational and strategic activities in support of the CISO's and IT's program initiatives.

  • Work with the CISO to develop a security program and security projects that address identified risks and business security requirements.
  • Manage the process of gathering, analysing and assessing the current and future threat landscape, as well as providing the CISO with a realistic overview of risks and threats in the enterprise environment.
  • Develop budget projections based on short- and long-term goals and objectives.
  • Monitor and report on compliance with security policies, as well as the enforcement of policies within the IT department.
  • Propose changes to existing policies and procedures to ensure operating efficiency and regulatory compliance.
  • Manage a staff of information security professionals, hire and train new staff, conduct performance reviews, and provide leadership and coaching, including technical and personal development programs for team members.
  • Assist product owners and IT staff in understanding and responding to security audit failures reported by auditors.
  • Work as a liaison with vendors and the legal and purchasing departments to establish mutually acceptable contracts and service-level agreements.
  • Manage production issues and incidents and participate in problem and change management forums.
  • Serve as an active and consistent participant in the information security governance process, working with the CISO and IT and business stakeholders to define metrics and reporting strategies that effectively communicate successes and progress of the security program.
  • Consult with IT and security staff to ensure that security is factored into the evaluation, selection, installation and configuration of hardware, applications and software.
  • Recommend and coordinate the implementation of technical controls to support and enforce defined security policies.
  • Research, evaluate, design, test, recommend or plan the implementation of new or updated information security hardware or software, and analyse its impact on the existing environment; provide technical and managerial expertise for the administration of security tools.
  • Work with the enterprise architecture team to ensure that there is a convergence of business, technical and security requirements; liaise with IT management to align existing technical installed base and skills with future architectural requirements.
  • Coordinate, measure and report on the technical aspects of security management.
  • Manage outsourced vendors that provide information security functions for compliance with contracted service-level agreements.
  • Manage and coordinate operational components of incident management, including detection, response and reporting.
  • Maintain a knowledge base comprising a technical reference library, security advisories and alerts, information on security trends and practices, and laws and regulations.
  • Manage the day-to-day activities of threat and vulnerability management, identify risk tolerances, recommend treatment plans and communicate information about residual risk.
  • Manage security projects and provide expert guidance on security matters for other IT projects.
  • Assist and guide the disaster recovery planning team in the selection of recovery strategies and the development, testing and maintenance of disaster recovery plans.
  • Ensure audit trails, system logs and other monitoring data sources are reviewed periodically and are in compliance with policies and audit requirements.
  • Design, coordinate and oversee security testing procedures to verify the security of systems, networks and applications, and manage the remediation of identified risks.



Click here to access HAYS Privacy Policy, which provides detailed information on how we use and protect your personal information, and your rights in relation to this.

Summary

Job type:
Permanent
Working Pattern
Full-time
Industry
Technology & Internet Services
Location
London
Specialism
Cyber Security
Pay
85,000 - 110,000
Ref:
3836330
Apply Now

Talk to a consultant

Talk to Alfie Whattam, the specialist consultant managing this position, located in London-City

4th Floor, 107 Cheapside

Telephone: 02034650094

Share Job