Menu Search

Chief Information Security Officer (CISO)

An excellent opportunity to work as a CISO for a leading provider of IT services


You will have day-to-day responsibility for all aspects of Protective Security, (Physical, Information and Personnel) ensuring that appropriate levels of security are in place across the organisation. The role will be responsible for coordinating security related matters including GDPR, assessing risk, drafting and delivering information security assurance within the UK aligned with current HMG Standards and Guidelines as well as compliance to industry best practices.

The successful candidate will be an experienced Chief Information Security Officer with excellent communications skills and the ability to influence and educate senior management in Cyber Security threats.

Information Security provides the enterprise with information security strategy, policy, standards, risk assessments, management processes and technology to ensure that information assets are adequately protected with acceptable levels of controls. These controls enable the businesses to operate efficiently, cost-effectively and in compliance with regulatory and industry practices.

You will come from a strong stakeholder management and information assurance risk background and have a proven track record of delivering high-level business objectives in a pressured public sector environment. Key

Objectives of the role:

  • End to end IT Security
  • Information management and Data Protection
  • ISO9001 and ISO27001 Accreditation
  • Risk management and reporting from local risk registers to Audit Committee
  • Training and development of IT security and Information Management awareness across
  • To prepare for strategic challenges that present the business including General Data Protection Regulation
  • Advisory to the Executive team and Board and Audit Committees on all security related matters
  • Develop and maintain relationships with senior COF risk, assurance and security teams
  • Oversight and accountability for service quality of the Vetting service

Key Relationships
  • Develop excellent operational working relationships with the Managing Directors
  • Lead and inspire the wider finance and corporate service teams including areas of non-direct management including Internal Audit and Business Continuity
  • To lead the Senior Management Group and develop a wider knowledge of information security across the business. Become the key go to person for advice and support to the SMG.
  • Work in collaboration with other security groups, including the new Public Sector

 Essential Skills:
  • Excellent interpersonal and communication skills
  • Strong enterprise risk management experience
  • Experienced in taking an Organisation through to ISO 27001 Certification
  • A clear understanding of UK Government Security Frameworks including the Security Policy Framework and CESG Good Practice guidance
  • A clear understanding of the Data Protection Act 1998
  • Experienced in Risk Assessment methodologies such as IRAM, CRAMM and IS1&2

   Key Responsibilities:
  • Overall responsibility for all Information Assurance and Security
  • Responsible for GDPR awareness
  • Maintain awareness of current threats and business risks and be able to clearly articulate these to Senior Management.
  • Managing the Security relationships
  • Leading the Security Architecture strategy
  • Managing, updating and publishing technical security polices, standards and processes
  • Managing Security Governance Boards
  • Act as the final point of issue escalation on all Security matters
  • Provide support and leadership on all audit and remediation activities
  • Maintain awareness of new and upcoming changes to external security policies, standards, laws or new vulnerabilities that may impact the client
  • Performance management and development of security resource

  Qualifications The successful candidate will attained at least three of the following Certifications
  • CISSP
  • CISM
  • CISA
  • CCISO
  • CCP SIRA
  • Ex CLAS or Certified Cyber Security Consultancy


Summary

Job Type:
Permanent
Industry
Technology & Internet Services
Location
Hatfield
Specialism
IT
Pay
£90,000 to £120,000
Ref:
3110047
Closing Date
Sun Oct 29 11:59:59 GMT 2017
Apply Now

Share Job