Head of Information Security

Job Reference

DNCISOV

Job Type

Permanent

Job Hours

Full time

Duration of Employment

Closing Date

25/12/2019

Job Location

Norwich

Job Postcode

NR7 0wg

Salary Benefits

Car

We are looking for a Head of Information Security or Chief of Information Security to protect The VPS Group from cyber security threats, both internal and external. The role will define and implement an information security strategy, appropriate monitoring and reporting to significantly improve the security posture of the group. This is an ideal role for someone who is looking for a new challenge and to take charge and implement their strategy alongside the Group IT Director. This is a brand new role within the business so there is lots of room to grow into the role.

Key Accountabilities

  • Assessment of VPS Group’s security posture against the NIST Framework.
  • Definition, oversight, implementation and management of the end to end security strategy to reach target maturity level.
  • Ensure Group IT services are adequately protected from internal and external malice.
  • Implementation of security services to maintain confidentiality, integrity and availability of all VPS Group systems and data.
  • Identify and monitor industry trends / threats including their relevance to the technology and real estate sector and how they should be applied within VPS Group.
  • Ensure regulatory compliance with enterprise security policies and standards, working in partnership with key compliance roles across the group.
  • Development and maintenance of standards, procedures and guidelines for information security services
  • Manage security services to meet business requirement and SLAs
  • Implement security policies for information sharing on internal and external platforms
  • Oversight and coordination of resilient business protection and continuity planning including security incident crisis management practices.
  • Strong and collaborative relationships with Business Leads and IT peers

Key Outputs

  • Security incident / breach frequency and impact.
  • IT solution designs are designed with security in mind
  • Leadership and management of major security incidents
  • NIST and other framework maturity remediation
  • Be respected as an Industry leader of IT Security Management and Information Security
  • Open dialogue with IT peers in improving end to end security of IT services
  • Strong and collaborative relationships with Business Leads – helping them to do the right thing to protect group information security.

Experience

  • Degree (Preferred)
  • Relevant industry experience
  • Proven track record in the information security field (specifically in security strategy, engineering and operations)
  • Security related qualifications (e.g. CISSP, CISM, CISA, ISO 27001)
  • Enterprise strategy business acumen
  • IT Operational experience across medium to large scale complex organisations
  • Resource and team management
  • Ability to work with all levels of the organisation

Knowledge and Skills

  • Experience of IT service, network, infrastructure and application security
  • Broad knowledge of IT domains, focus on technical security
  • Understanding of business requirements from IT security
  • Understanding of OSI model layers
  • Knowledge of security industry standards and processes
  • Proven ability in team management, decision-making and communication
  • Problem-solving, analytical and influencing skills
  • Managing suppliers, implementing service improvements and managing risks and issues

Travel will be required between Norwich and Chadderton

If you are interested in the above click apply today!