Woolf Group
,
Hatfield, Hertfordshire
Head of Information Security
|
Job Type: Full-time |
---|
Overview
We are looking for a Head of Information Security to protect our client from cyber security threats, both internal and external. The role will define and implement an information security strategy, appropriate monitoring and reporting to significantly improve the security posture of the organisation. This is an ideal role for someone who is looking for a new challenge and to take charge and implement their strategy alongside the CIO. Key Accountabilities • Assessment of current security posture • Definition, oversight, implementation and management of the end to end security strategy to reach target maturity level. • Ensure IT services are adequately protected from internal and external malice. • Implementation of security services to maintain confidentiality, integrity and availability of all systems and data. • Identify and monitor industry trends / threats including their relevance to the technology and real estate sector and how they should be applied. • Ensure regulatory compliance with enterprise security policies and standards, working in partnership with key compliance roles across the group. • Development and maintenance of standards, procedures and guidelines for information security services • Manage security services to meet business requirement and SLAs • Implement security policies for information sharing on internal and external platforms • Oversight and coordination of resilient business protection and continuity planning including security incident crisis management practices. • Strong and collaborative relationshipsin Group. with Business Leads and IT peers Key Outputs • Security incident / breach frequency and impact. • IT solution designs are designed with security in mind • Leadership and management of major security incidents • Be respected as an Industry leader of IT Security Management and Information Security • Open dialogue with IT peers in improving end to end security of IT services • Strong and collaborative relationships with Business Leads - helping them to do the right thing to protect information security. Experience • Relevant industry experience • Proven track record in the information security field (specifically in security strategy, engineering and operations) • Security related qualifications (e.g. CISSP, CISM, CISA, ISO 27001) • Enterprise strategy business acumen • IT Operational experience across medium to large scale complex organisations • Resource and team management • Ability to work with all levels of the organisation Knowledge and Skills • Experience of IT service, network, infrastructure and application security • Broad knowledge of IT domains, focus on technical security • Understanding of business requirements from IT security • Knowledge of security industry standards and processes • Proven ability in team management, decision-making and communication • Problem-solving, analytical and influencing skills • Managing suppliers, implementing service improvements and managing risks and issues