Director of Information Security & Cyber Security

Sopra Steria Limited ,
Hemel Hempstead, Hertfordshire

Overview

Director of Information Security & Cyber Security Location – London or Hemel Hempstead with travel required The Company Sopra Steria, European leader in digital transformation, provides one of the most comprehensive portfolios of end-to-end service offerings in the market: Consulting, Systems Integration, Software Development and Business Process Services. Sopra Steria is a trusted by leading private and public organisations to deliver successful transformation programmes that address their most complex and critical business challenges. The Day Job Director of Information & Cyber Security is the most senior role responsible for IS and Cyber security across the group of UK businesses (Sopra Steria UK Ltd, Shared Services Connect Ltd, NHS SBS), responsible for creating, setting and ensuring adhere to our IS Security strategy. The strategy is to encompass how we protect our UK business from security threats and vulnerabilities and in addition ensure our bids and contracted services effectively meet our security obligations. The Director of Information & Cyber Security will work closely with Group colleagues to influence the Group IS and IS Security strategy and improvement programmes, ensuring the UK business requirements are understood and met. They are to escalate identified risks and vulnerabilities that are dependent on Group resolution ensuring effective solutions are provided. This role will work closely with the Joint Ventures and SSL Sector leadership, presales and delivery teams ensuring our propositions, solutions, projects and services effectively meet IS Security standards ensuring our contractual obligations are met, minimising any potential IS security vulnerability and threat for our customers. The Director of Information & Cyber Security is to command the respect and engage effectively with their counterparts in our clients or targeted client organisations. The Director of Information & Cyber Security is a recognised IS Security expert, experienced in working in a commercial environment. They are to be forward thinking, being aware of emerging IS & Cyber Security risks and they are to ensure mitigation solutions are implemented to protect the UK business. A confident senior leader with the personable skills to empower and inspire teams and IS Security practitioners and have a trusted position within the company and with our customers. Key Responsibilities · Contributing to and supporting the Group Information Security policy, processes and improvement programmes. · Leading the creation and implementation of an effective UK IS Security strategy. · Point of escalation, providing support and ensuring effective resolution to security incidents and client concerns. · Ensuring a framework for regular Information Security & Cyber risk assessments and reporting on ways to minimise threats and vulnerabilities. · Ensuring effective monitoringand reporting is present across all business areas to manage information security vulnerabilities and threats within the UK infrastructure and network environments. · Leading and shaping the IS Security contributions to presales and major bids, ensuring effective, appropriate secure solutions, undertaking client presentations and engagements as necessary. · Managing the security relationships with key suppliers. · Horizon scanning and providing thought leadership on the latest IT Security innovations and keeping abreast of latest cyber security technologies. · Establishing and ensuring adherence, across the whole business, of our standard methods and approach to ensure our application development services comply with the relevant, current security standards and protocols. · Implementing an effective approach for the reporting and management of security incidents. · Conducting a continuous assessment of current IT security practices and systems and identifying areas for improvement. Essential Skills · Experience of working in multi-site, complex, IT outsourcing or professional service organisations. · Experienced and comfortable working at Executive/Senior levels, contributing to and influencing wider business direction and decisions · Experience working as a CISO in a large complex organisation. · Experienced in driving and delivering first-class information & cyber security solutions. · Establish effective Management Information to better inform IS Security decisions · Demonstrable track record of defining effective strategy and leading teams to successfully deliver · Proven experience and success in stakeholder/relationship management – credibility and ability to work at all levels internally and in client organisations. · High impact communication, influencing and presentation skills. · Effective people management skills – providing direction, monitoring performance, motivating staff and building a positive working environment · A passion for technology and security safeguarding with a desire to deliver. · Thrives on change, showing an impressive ability to drive the information security strategy forward. · C yber/information security qualification (CISSP, CISM, CCSP or Equivalent). · Strong understanding and experience applying of one or more security industry frameworks (E.g. ISO27001, NIST) Get in touch for more details or to have a confidential discussion about whether this could be the opportunity for you. This job was originally posted as www.totaljobs.com/job/89853953