We are currently recruiting for a Chief Information Security Officer (CISO) , reporting to the Chief Technology Officer, to be responsible for ensuring the security, privacy, and compliance of Tunstall's operations on a global scale. But there's more to this than just the 'day job'. As a Group we're embarking on an exciting period of transformation. We want to fundamentally transform the systems, processes, people, and technology across our business, to achieve measurable and sustainable improvements. You'll play a vital part in contributing to this transformation, helping to shape information and cyber security at Tunstall globally. This role could work on a hybrid basis from any of our main hubs - Manchester city centre, Malmo, or Madrid. What will you be doing in this role? As our CISO , you will safeguard the company's internal infrastructure, but also influence and contribute to the security and resilience of our operations, assets, and reputation. This role is not just the shaping of strategy but the execution and hands-on delivery of this strategy. This is a very visible role, and you will have a chance to make a real difference to Tunstall and our all-important customers. You will be responsible for driving security change and transformation across Tunstall, by helping to create and build a comprehensive cyber security and information security strategy that aligns with business objectives and play a pivotal role in ensuring the security of our SaaS products . The identification, assessment, and prioritisation of security risks associated with both internal and external factors in line with business objectives and ensuring the compliance with all relevant laws and regulations related to security, including GDPR (and other relevant data protection regulations), is vital to the success of this role. You will lead, inspire, and mentor the security and compliance teams globally, fostering a culture of continuous improvement, innovation, and excellence, as well as promoting security awareness throughout Tunstall, upskilling, and educating colleagues as required. The Ideal candidate: To be successful in this role you will have leadership experience in cyber and information security from a brownfield site , with an in-depth understanding of all the key cyber and information security domains . You will have experience of liaising with, and influencing senior stakeholders around key business objectives, most effective approach, and allocation of budgets, with a proven track record of driving security change and transformation. We are a cost-conscious business, so the ability to work to a budget, and deliver return on investment (ROI) through the effective and efficient utilisation of security tooling and available resources is vital to success. You will be able to demonstrate previous success in shaping, building, executing, and implementing a comprehensive international cyber security and information security strategy . You will be pragmatic, with a commercial approach, and significant experience of reviewing and assessing differing approaches and security tools, able to demonstrate clear rationale behind your decisions. With excellent communication skills , both verbal and written, you will have the ability to convey and ensure an understanding of complex messages to colleagues at all levels. As a proven and collaborative leader, with a strong teamwork ethic, and can-do attitude, you will be happy to be both strategic and hands on, used to working in a fast-moving organisation, able to create structure and clarity from ambiguity. In addition, you will have a strong knowledge of software as a service (SaaS) products and on-premise technical solutions, with experience of delivering security solutions for SaaS products. Experience with a hardware provider / manufacturer as well would be highly desirable. What we offer: Competitive salary, Car allowance, Bonus, Family private health, Hybrid working, 25 days holiday + bank holidays, Holiday purchase scheme, Contributory pension, Volunteer day to support a cause you are passionate about, Car benefit scheme, Dedicated 24/7 employee benefits platform 'Verlingue' that include things like: free eye tests, retail discounts, EAP WeCare service - including a 24/7 online GP and mental health counselling service, Boost your learning and growth through access to a Talent Library with over 800 courses, and access to Udemy or O'Reilly learning platforms, A warm and welcoming team environment and a chance to build a rewarding career. Some of your key tasks will be Develop, execute, deliver, and provide support on a comprehensive cybersecurity and information security strategy that aligns with business objectives, Lead, mentor, and oversee a small global team responsible for security operations, incident response, and threat detection, fostering a culture of continuous improvement, innovation, and excellence, Collaborate with the Group IT team to ensure the organisation is protected against cyber threats and maintain an effective incident response plan, Play a pivotal role in ensuring the security of Tunstall's SaaS products, Identify, review, select, and manage our relationships with appropriate third-party security partners for our products, Work closely with product development teams to embed security principles into the product lifecycle, Ensure appropriate security assessments, penetration testing, and code reviews are conducted, Ensure compliance with all relevant laws and regulations related to security, including GDPR, if applicable, Stay informed about evolving cybersecurity regulations, standards, and best practices, Collaborate with legal and compliance teams to address security and privacy concerns, Identify, assess, and prioritise security risks associated with both internal and external factors, Develop and maintain a risk management framework to mitigate risks effectively, Establish and enhance incident response plans and conduct drills, Evaluate and manage security risks associated with third-party vendors and partners, including those providing security solutions, Establish robust vendor security assessment processes and due diligence procedures to ensure the security of third-party products and services, Collaborate with external security vendors and consultants to enhance our security posture and stay current with industry best practices, Promote a culture of security awareness throughout Tunstall, upskilling and educating colleagues as required, Develop and track key performance indicators (KPIs) and metrics to measure the effectiveness of security initiatives, Drive continuous improvement in security strategies and practices globally. Key skills and experience: Bachelor's degree in computer science, Information Security, or a related field, or equivalent experience, Proven experience in cyber security and information security, in a leadership role, Strong knowledge of SaaS and on-premise technical solutions, Proven experience in delivering security solutions for SaaS products, Excellent understanding of compliance standards and regulations relevant to the industry, Relevant certifications such as CISSP , CISM , or CISA are a plus, Strong communication skills, both verbal and written, Excellent leadership skills (ideally of a global team), A collaborative individual, used to working cross functionally, able to influence and guide individuals, Proven experience, and happy to be, both strategic and hands-on in approach, Demonstrable experience of successfully driving change and transformation within a business. If you are not sure if you have the relevant skills or experience, then please apply (only takes a few minutes) and let our team review and come back to you. A bit about us: Tunstall is a market-leading health and care technology provider . We're passionate about ensuring our team reflects the brilliant and unique qualities of the people and communities we support. Our incredible team of more than 3,000 colleagues provides life saving and life changing technology and services to millions of people in 18 different countries . At Tunstall you'll find a place where you're valued and celebrated for being yourself. We empower our people to deliver the very best teamwork, innovation and thought leadership by creating an environment where we champion diversity and inclusion. We demonstrate our commitment to diversity and inclusion at each step. From our open, fair, and transparent recruitment processes, through to the many development and career growth opportunities we provide. Each Tunstall colleague has a superpower they're unique. No one else is them, and we think that's special. Come and join our mission and be part of our team, our One Tunstall team.
May 18, 2024
Full time
We are currently recruiting for a Chief Information Security Officer (CISO) , reporting to the Chief Technology Officer, to be responsible for ensuring the security, privacy, and compliance of Tunstall's operations on a global scale. But there's more to this than just the 'day job'. As a Group we're embarking on an exciting period of transformation. We want to fundamentally transform the systems, processes, people, and technology across our business, to achieve measurable and sustainable improvements. You'll play a vital part in contributing to this transformation, helping to shape information and cyber security at Tunstall globally. This role could work on a hybrid basis from any of our main hubs - Manchester city centre, Malmo, or Madrid. What will you be doing in this role? As our CISO , you will safeguard the company's internal infrastructure, but also influence and contribute to the security and resilience of our operations, assets, and reputation. This role is not just the shaping of strategy but the execution and hands-on delivery of this strategy. This is a very visible role, and you will have a chance to make a real difference to Tunstall and our all-important customers. You will be responsible for driving security change and transformation across Tunstall, by helping to create and build a comprehensive cyber security and information security strategy that aligns with business objectives and play a pivotal role in ensuring the security of our SaaS products . The identification, assessment, and prioritisation of security risks associated with both internal and external factors in line with business objectives and ensuring the compliance with all relevant laws and regulations related to security, including GDPR (and other relevant data protection regulations), is vital to the success of this role. You will lead, inspire, and mentor the security and compliance teams globally, fostering a culture of continuous improvement, innovation, and excellence, as well as promoting security awareness throughout Tunstall, upskilling, and educating colleagues as required. The Ideal candidate: To be successful in this role you will have leadership experience in cyber and information security from a brownfield site , with an in-depth understanding of all the key cyber and information security domains . You will have experience of liaising with, and influencing senior stakeholders around key business objectives, most effective approach, and allocation of budgets, with a proven track record of driving security change and transformation. We are a cost-conscious business, so the ability to work to a budget, and deliver return on investment (ROI) through the effective and efficient utilisation of security tooling and available resources is vital to success. You will be able to demonstrate previous success in shaping, building, executing, and implementing a comprehensive international cyber security and information security strategy . You will be pragmatic, with a commercial approach, and significant experience of reviewing and assessing differing approaches and security tools, able to demonstrate clear rationale behind your decisions. With excellent communication skills , both verbal and written, you will have the ability to convey and ensure an understanding of complex messages to colleagues at all levels. As a proven and collaborative leader, with a strong teamwork ethic, and can-do attitude, you will be happy to be both strategic and hands on, used to working in a fast-moving organisation, able to create structure and clarity from ambiguity. In addition, you will have a strong knowledge of software as a service (SaaS) products and on-premise technical solutions, with experience of delivering security solutions for SaaS products. Experience with a hardware provider / manufacturer as well would be highly desirable. What we offer: Competitive salary, Car allowance, Bonus, Family private health, Hybrid working, 25 days holiday + bank holidays, Holiday purchase scheme, Contributory pension, Volunteer day to support a cause you are passionate about, Car benefit scheme, Dedicated 24/7 employee benefits platform 'Verlingue' that include things like: free eye tests, retail discounts, EAP WeCare service - including a 24/7 online GP and mental health counselling service, Boost your learning and growth through access to a Talent Library with over 800 courses, and access to Udemy or O'Reilly learning platforms, A warm and welcoming team environment and a chance to build a rewarding career. Some of your key tasks will be Develop, execute, deliver, and provide support on a comprehensive cybersecurity and information security strategy that aligns with business objectives, Lead, mentor, and oversee a small global team responsible for security operations, incident response, and threat detection, fostering a culture of continuous improvement, innovation, and excellence, Collaborate with the Group IT team to ensure the organisation is protected against cyber threats and maintain an effective incident response plan, Play a pivotal role in ensuring the security of Tunstall's SaaS products, Identify, review, select, and manage our relationships with appropriate third-party security partners for our products, Work closely with product development teams to embed security principles into the product lifecycle, Ensure appropriate security assessments, penetration testing, and code reviews are conducted, Ensure compliance with all relevant laws and regulations related to security, including GDPR, if applicable, Stay informed about evolving cybersecurity regulations, standards, and best practices, Collaborate with legal and compliance teams to address security and privacy concerns, Identify, assess, and prioritise security risks associated with both internal and external factors, Develop and maintain a risk management framework to mitigate risks effectively, Establish and enhance incident response plans and conduct drills, Evaluate and manage security risks associated with third-party vendors and partners, including those providing security solutions, Establish robust vendor security assessment processes and due diligence procedures to ensure the security of third-party products and services, Collaborate with external security vendors and consultants to enhance our security posture and stay current with industry best practices, Promote a culture of security awareness throughout Tunstall, upskilling and educating colleagues as required, Develop and track key performance indicators (KPIs) and metrics to measure the effectiveness of security initiatives, Drive continuous improvement in security strategies and practices globally. Key skills and experience: Bachelor's degree in computer science, Information Security, or a related field, or equivalent experience, Proven experience in cyber security and information security, in a leadership role, Strong knowledge of SaaS and on-premise technical solutions, Proven experience in delivering security solutions for SaaS products, Excellent understanding of compliance standards and regulations relevant to the industry, Relevant certifications such as CISSP , CISM , or CISA are a plus, Strong communication skills, both verbal and written, Excellent leadership skills (ideally of a global team), A collaborative individual, used to working cross functionally, able to influence and guide individuals, Proven experience, and happy to be, both strategic and hands-on in approach, Demonstrable experience of successfully driving change and transformation within a business. If you are not sure if you have the relevant skills or experience, then please apply (only takes a few minutes) and let our team review and come back to you. A bit about us: Tunstall is a market-leading health and care technology provider . We're passionate about ensuring our team reflects the brilliant and unique qualities of the people and communities we support. Our incredible team of more than 3,000 colleagues provides life saving and life changing technology and services to millions of people in 18 different countries . At Tunstall you'll find a place where you're valued and celebrated for being yourself. We empower our people to deliver the very best teamwork, innovation and thought leadership by creating an environment where we champion diversity and inclusion. We demonstrate our commitment to diversity and inclusion at each step. From our open, fair, and transparent recruitment processes, through to the many development and career growth opportunities we provide. Each Tunstall colleague has a superpower they're unique. No one else is them, and we think that's special. Come and join our mission and be part of our team, our One Tunstall team.
Chief Information Security Officer (CISO) Assurance Directorate, Wellington Square, Oxford, OX1 2JD (with regular hybrid working, subject to business needs) Chief Information Security Officer (CISO) Grade 10 The University of Oxford is a stimulating work environment, which enjoys an international reputation as a world-leading centre of learning, teaching and research and is consistently ranked the world's top university. Our research plays a key role in addressing many global challenges, from tackling climate change to developing vaccines and treatments for the world during a pandemic. We have an exciting opportunity to join our Assurance Directorate as Chief Information Security Officer (CISO). Formed in September 2019, the Assurance Directorate is one of the newest departments in the University of Oxford's University Administration and Services: the 'corporate centre' of the University. This directorate comprises the Data Protection Officer (DPO), the Chief Information Security Officer (CISO), and Head of Risk and Resilience and their respective teams. About the role This is an outstanding opportunity to take on a leadership role whose main responsibility is to further develop, maintain and continuously improve the collegiate University's information security management framework, to ensure the availability, integrity and confidentiality of the University's information. The Chief Information Security Officer (CISO) will review, further develop and implement the collegiate University's information security strategy and programme in order to protect information assets, manage information security risks, meet legislative and partner requirements, and provide assurance to key stakeholders. The CISO will apply their excellent technological skills, extensive experience of the cyber landscape and highly effective leadership skills, to help the University respond to the evolving cyber threats and protect the University of Oxford's ability to deliver its academic mission. The CISO is a member of the Assurance Directorate Senior Leadership Team and also attends the IT Services Senior Management Team meetings. About you The ideal candidate will have an excellent knowledge of information security trends, technologies and methodologies and have, or be able to develop quickly, a sound understanding of the collegiate University. They will inspire confidence of senior stakeholders, lead by consensus, and will be skilled in integrating the various elements of information security. They will support the University's strategic objectives whilst ensuring the appropriate information security protections and practices to safeguard the information assets of the University. The successful candidate will have experience in leading a cyber security or IT function and an in-depth understanding of cyber threats, vulnerabilities and mitigation. They will manage diverse and high performing teams, and possess the ability to manage, lead and motivate cross-functional, interdisciplinary teams across highly complex and devolved organisation. What we offer As an employer, we genuinely care about our employees' wellbeing and this is reflected in the range of benefits that we offer including: • An excellent contributory pension scheme • 38 days annual leave • A comprehensive range of childcare services • Family leave schemes • Discounted bus travel and Season Ticket travel loans • Membership to a variety of social and sports clubs • This role also offers the opportunity for hybrid working (expected two to three days in the office per week). Application Process The University of Oxford are being supported in this appointment by GatenbySanderson. For a confidential conversation regarding the role or to apply, please contact Jacqueline Lau at or Mohamed Ebrahim at The deadline for application is Monday 20 May 2024, 9.00am First round interviews with GatenbySanderson will be held w/c 27 May and w/c 3 June 2024 Final interviews are scheduled to take place w/c 1 July 2024 in Oxford Click on the link(s) below to view documents
May 17, 2024
Full time
Chief Information Security Officer (CISO) Assurance Directorate, Wellington Square, Oxford, OX1 2JD (with regular hybrid working, subject to business needs) Chief Information Security Officer (CISO) Grade 10 The University of Oxford is a stimulating work environment, which enjoys an international reputation as a world-leading centre of learning, teaching and research and is consistently ranked the world's top university. Our research plays a key role in addressing many global challenges, from tackling climate change to developing vaccines and treatments for the world during a pandemic. We have an exciting opportunity to join our Assurance Directorate as Chief Information Security Officer (CISO). Formed in September 2019, the Assurance Directorate is one of the newest departments in the University of Oxford's University Administration and Services: the 'corporate centre' of the University. This directorate comprises the Data Protection Officer (DPO), the Chief Information Security Officer (CISO), and Head of Risk and Resilience and their respective teams. About the role This is an outstanding opportunity to take on a leadership role whose main responsibility is to further develop, maintain and continuously improve the collegiate University's information security management framework, to ensure the availability, integrity and confidentiality of the University's information. The Chief Information Security Officer (CISO) will review, further develop and implement the collegiate University's information security strategy and programme in order to protect information assets, manage information security risks, meet legislative and partner requirements, and provide assurance to key stakeholders. The CISO will apply their excellent technological skills, extensive experience of the cyber landscape and highly effective leadership skills, to help the University respond to the evolving cyber threats and protect the University of Oxford's ability to deliver its academic mission. The CISO is a member of the Assurance Directorate Senior Leadership Team and also attends the IT Services Senior Management Team meetings. About you The ideal candidate will have an excellent knowledge of information security trends, technologies and methodologies and have, or be able to develop quickly, a sound understanding of the collegiate University. They will inspire confidence of senior stakeholders, lead by consensus, and will be skilled in integrating the various elements of information security. They will support the University's strategic objectives whilst ensuring the appropriate information security protections and practices to safeguard the information assets of the University. The successful candidate will have experience in leading a cyber security or IT function and an in-depth understanding of cyber threats, vulnerabilities and mitigation. They will manage diverse and high performing teams, and possess the ability to manage, lead and motivate cross-functional, interdisciplinary teams across highly complex and devolved organisation. What we offer As an employer, we genuinely care about our employees' wellbeing and this is reflected in the range of benefits that we offer including: • An excellent contributory pension scheme • 38 days annual leave • A comprehensive range of childcare services • Family leave schemes • Discounted bus travel and Season Ticket travel loans • Membership to a variety of social and sports clubs • This role also offers the opportunity for hybrid working (expected two to three days in the office per week). Application Process The University of Oxford are being supported in this appointment by GatenbySanderson. For a confidential conversation regarding the role or to apply, please contact Jacqueline Lau at or Mohamed Ebrahim at The deadline for application is Monday 20 May 2024, 9.00am First round interviews with GatenbySanderson will be held w/c 27 May and w/c 3 June 2024 Final interviews are scheduled to take place w/c 1 July 2024 in Oxford Click on the link(s) below to view documents
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high-growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. The Head of Data Governance role is part of the Data Office function and reports into our Chief Data Officer. The role leads the Data Governance Team and is a critical role in helping to deliver on BDO's data vision which is that everyone at BDO is empowered by data . You will be working as part of a multi-disciplinary function alongside our Data and Analytics team as well as our Data Strategy and Culture team. This is a newly created role and as such a fantastic opportunity to make the role your own. You will be expected to provide leadership and expert thinking to BDO on all data matters and will own the strategic pillar 'embedding our data governance framework'. In this role you'll: Implement, maintain and evolve our data governance framework, including data roles and responsibilities, policies and standards, technology and processes Align all aspects of operational and strategic data management to our business requirements and priorities, in support of decision-making and future product and service development Drive high standards of data integrity and quality across strategic data sources, establishing the metrics to monitor data management and governance effectiveness Continuously evaluate and recommend innovative solutions and methodologies to enhance BDO's capabilities in the data governance and data management space Work collaboratively across the business to embed a data-driven culture (working closely with our data strategy and culture team) Work closely with our CISO and DPO teams to ensure alignment on security and data protection Own the end-to-end delivery of data governance activities and initiatives Liaise and work closely with data sponsors, data trustees (similar to owners), data stewards, and department leads to ensure alignment of data governance and to maintain best practices. Provide support and guidance in the application of data management methods. Lead the business activity on data quality remediation plans. You'll be someone with: A proven track record of delivering and embedding data governance frameworks Comprehensive knowledge of building quality data infrastructures with associated supplementary data sources, data quality standards and stewardship An excellent understanding of compliance, privacy, and UK and EU data regulations Experience working within complex business models such as Partnerships An understanding of information and data governance best practices, including regulatory requirements. The ability to work at both strategic and more detailed levels, providing information, leadership, and direction to data governance. Excellent communication and influencing skills at a senior level across the firm , facilitating discussions to further the understanding of the need for good data governance. Experience managing a team and supporting team growth The ability to identify creative solutions to overcome problems. The ability to impart knowledge and offer options to other stakeholders as well as those who work directly in the team. An understanding of how Data Governance needs to evolve alongside emerging analytical machine learning and AI technologies You'll be able to be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suit you, your teams, and the task at hand. At BDO, we'll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development. We're in it together Mutual support and respect is one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fuelling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
May 16, 2024
Full time
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high-growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. The Head of Data Governance role is part of the Data Office function and reports into our Chief Data Officer. The role leads the Data Governance Team and is a critical role in helping to deliver on BDO's data vision which is that everyone at BDO is empowered by data . You will be working as part of a multi-disciplinary function alongside our Data and Analytics team as well as our Data Strategy and Culture team. This is a newly created role and as such a fantastic opportunity to make the role your own. You will be expected to provide leadership and expert thinking to BDO on all data matters and will own the strategic pillar 'embedding our data governance framework'. In this role you'll: Implement, maintain and evolve our data governance framework, including data roles and responsibilities, policies and standards, technology and processes Align all aspects of operational and strategic data management to our business requirements and priorities, in support of decision-making and future product and service development Drive high standards of data integrity and quality across strategic data sources, establishing the metrics to monitor data management and governance effectiveness Continuously evaluate and recommend innovative solutions and methodologies to enhance BDO's capabilities in the data governance and data management space Work collaboratively across the business to embed a data-driven culture (working closely with our data strategy and culture team) Work closely with our CISO and DPO teams to ensure alignment on security and data protection Own the end-to-end delivery of data governance activities and initiatives Liaise and work closely with data sponsors, data trustees (similar to owners), data stewards, and department leads to ensure alignment of data governance and to maintain best practices. Provide support and guidance in the application of data management methods. Lead the business activity on data quality remediation plans. You'll be someone with: A proven track record of delivering and embedding data governance frameworks Comprehensive knowledge of building quality data infrastructures with associated supplementary data sources, data quality standards and stewardship An excellent understanding of compliance, privacy, and UK and EU data regulations Experience working within complex business models such as Partnerships An understanding of information and data governance best practices, including regulatory requirements. The ability to work at both strategic and more detailed levels, providing information, leadership, and direction to data governance. Excellent communication and influencing skills at a senior level across the firm , facilitating discussions to further the understanding of the need for good data governance. Experience managing a team and supporting team growth The ability to identify creative solutions to overcome problems. The ability to impart knowledge and offer options to other stakeholders as well as those who work directly in the team. An understanding of how Data Governance needs to evolve alongside emerging analytical machine learning and AI technologies You'll be able to be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suit you, your teams, and the task at hand. At BDO, we'll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development. We're in it together Mutual support and respect is one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fuelling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
Location: Whiteley, Fareham (onsite for the first 7 weeks during the pen testing phase, then remote working) Duration: 12 month contract Rate: Inside IR35 Role: Our client NATS (National Air Traffic Services) are looking for a Security Technical Designer (Cyber Consultant) to join their team on a contract basis. They are looking for a technical expert who will be responsible for leading, guiding, supporting and assuring the architectural level technical service design for cyber and associated system architecture design activities, ensuring they are affordable and in line with the agreed principles, strategies, requirements and Target Operating Model. You will: Develop and maintain an understanding of key developments in cyber security, and its application in a wide range of relevant domains including ATM. Lead the development, socialisation and agreement of the technical cyber security strategies and resulting service / solution architectures of NATS future technical services, consistent with meeting NATS agreed business, operational and enterprise strategies, obligations and objectives. Work with stakeholders such as the CISO, NCSC and other governance boards. Develop the cyber security architecture to support the technical services within the future service catalogue (service portfolio), describing NATS technical services and how they will be delivered through a combination of people process and technology. Work with other stakeholders to ensure that the target architecture is deliverable and affordable, supporting the definition and agreement of appropriate compromises where necessary. Champion the cyber security strategies and architecture to secure alignment and buy in across the business. Work as an integral member of the Architecture and Technical Delivery team, providing mutual support and challenge, taking responsibility as required to ensure positive teamwork and clear, joined up communications to all stakeholders. Skills required: Good honours degree in a technical discipline (such as in Computer Science, MIS or related field preferred), or equivalent of knowledge acquired through experience, other qualifications and training/development. Technical certifications in the area of cyber security, such as CCNP, CCSP, SABSA, CISSP, CISM (highly desirable). A credible and respected leader with well-developed communication, influencing and negotiation skills. Significant experience of delivering cyber solutions, in an architectural field at a senior level in a complex technical landscape (service orientated). Proven experience of architectural governance and proactively managing issues and risks throughout the delivery lifecycle, with respect to information and cyber security; Strong communication & influencing skills with proven ability to influence teams and deliver solutions to complex challenges; Proficient at communicating strategies and complex technical issues to both operational and technical audiences and is able to communicate with right level of abstraction and detail when interacting key stakeholders. Apply today via the link provided!
May 16, 2024
Contractor
Location: Whiteley, Fareham (onsite for the first 7 weeks during the pen testing phase, then remote working) Duration: 12 month contract Rate: Inside IR35 Role: Our client NATS (National Air Traffic Services) are looking for a Security Technical Designer (Cyber Consultant) to join their team on a contract basis. They are looking for a technical expert who will be responsible for leading, guiding, supporting and assuring the architectural level technical service design for cyber and associated system architecture design activities, ensuring they are affordable and in line with the agreed principles, strategies, requirements and Target Operating Model. You will: Develop and maintain an understanding of key developments in cyber security, and its application in a wide range of relevant domains including ATM. Lead the development, socialisation and agreement of the technical cyber security strategies and resulting service / solution architectures of NATS future technical services, consistent with meeting NATS agreed business, operational and enterprise strategies, obligations and objectives. Work with stakeholders such as the CISO, NCSC and other governance boards. Develop the cyber security architecture to support the technical services within the future service catalogue (service portfolio), describing NATS technical services and how they will be delivered through a combination of people process and technology. Work with other stakeholders to ensure that the target architecture is deliverable and affordable, supporting the definition and agreement of appropriate compromises where necessary. Champion the cyber security strategies and architecture to secure alignment and buy in across the business. Work as an integral member of the Architecture and Technical Delivery team, providing mutual support and challenge, taking responsibility as required to ensure positive teamwork and clear, joined up communications to all stakeholders. Skills required: Good honours degree in a technical discipline (such as in Computer Science, MIS or related field preferred), or equivalent of knowledge acquired through experience, other qualifications and training/development. Technical certifications in the area of cyber security, such as CCNP, CCSP, SABSA, CISSP, CISM (highly desirable). A credible and respected leader with well-developed communication, influencing and negotiation skills. Significant experience of delivering cyber solutions, in an architectural field at a senior level in a complex technical landscape (service orientated). Proven experience of architectural governance and proactively managing issues and risks throughout the delivery lifecycle, with respect to information and cyber security; Strong communication & influencing skills with proven ability to influence teams and deliver solutions to complex challenges; Proficient at communicating strategies and complex technical issues to both operational and technical audiences and is able to communicate with right level of abstraction and detail when interacting key stakeholders. Apply today via the link provided!
Cyber Security Specialist I am partnered with a leading financial services business committed to revolutionising technology in their space. They have received massive investments and are prioritising on expanding their security team which already consists of 6 dedicated cyber security specialists, who have a wealth of knowledge they can share. This is a great opportunity for a driven Mid to Senior Cyber Security individual, who is looking to take on an all-rounded position as you will be between roles in the security team and giving you a wide range of security experience. Reporting directly to the CISO, he will offer you a progression plan to upskill your abilities to ensure you excel in your career. Skills: Hands on experience as a Cyber Security Analyst/Engineer Experience with Vulnerability Management (Tenable) Experience in Application Security Exposure to Threat intelligence (Rapid7) Must have Stakeholder engagement experience Strong communication skills Adaptable mentality Understanding of GRC Understanding of IAM Interest in Azure Location: Stockport, 2 days onsite, 3 days remote Salary: 55-65k + benefits Must be eligible for SC Clearance If you are interested in this role, please apply to the job advert or email
May 15, 2024
Full time
Cyber Security Specialist I am partnered with a leading financial services business committed to revolutionising technology in their space. They have received massive investments and are prioritising on expanding their security team which already consists of 6 dedicated cyber security specialists, who have a wealth of knowledge they can share. This is a great opportunity for a driven Mid to Senior Cyber Security individual, who is looking to take on an all-rounded position as you will be between roles in the security team and giving you a wide range of security experience. Reporting directly to the CISO, he will offer you a progression plan to upskill your abilities to ensure you excel in your career. Skills: Hands on experience as a Cyber Security Analyst/Engineer Experience with Vulnerability Management (Tenable) Experience in Application Security Exposure to Threat intelligence (Rapid7) Must have Stakeholder engagement experience Strong communication skills Adaptable mentality Understanding of GRC Understanding of IAM Interest in Azure Location: Stockport, 2 days onsite, 3 days remote Salary: 55-65k + benefits Must be eligible for SC Clearance If you are interested in this role, please apply to the job advert or email
Randalls Way, Leatherhead KT22 7TW, UK Req 07 May 2024 Established in 1982, Bytes has grown rapidly and now employs over 600+ people across 5 locations in the UK and Ireland. Our turnover in Financial Year 2019 was in excess of £520M. We work with SME's, corporates and public sector organisations to modernise and digitally transform their IT infrastructures. We invest in our employees through on-going support, training and advice to help them achieve their career aspirations, rewarding success both financially and personally. There is opportunity to grow and move internally which can be seen through our long-standing employees who have developed existing and new skills to move into senior positions in the organisation leaving space for new team members to begin their journey. Over 600 staff (plans to double in size over the next 5 years) Operating from modern, hybrid working environments with offices in Leatherhead, Reading, London or Manchester Winners of an array of industry awards Sunday Times Top 100 Best Places to Work Excellent training and career prospects offered Fantastic office with gym, canteen, open plan, smart casual dress code, regular incentives and company events Supporters of 85+ charities with strong commitment to diversity and sustainability POSITION DETAILS: Position Title: Position Title: Third Party Compliance Officer Reports to (POSITION): Reports to (POSITION): Legal & Compliance Manager Team: Team: Compliance Department: Department: Legal & Compliance PURPOSE OF JOB: Due to exciting transformation, we are pleased to announce an opportunity for a collaborative, inclusive, and engaging individual, with extensive Third Party Risk experience gained from supplier/vendor management, to join our Compliance team as Third Party Compliance Officer. The primary responsibility for this role will be to interface with our customers, tenders/bids team and account managers to articulate our security posture based on customer security vetting requirements. Secondarily, in this exciting role you will also be responsible for maintaining TPRM principles and standards, ensuring that third party suppliers/vendors/partners are vetted, monitored regularly, and managed to mitigate risks that could negatively impact Bytes. This is an exciting time for the team, and you will play a key role in helping us to mature this function. You will have lots of autonomy and variety with your day-to-day work, giving you a sense of ownership, and the freedom to be curious and bring new ideas to the table. KEY RESPONSIBILITIES: Implementation and operationalisation of third party management systems in line with business strategic direction Management of inbound and outbound third party security assurance including responses to customers and working with appropriate suppliers/vendors/partners New supplier onboarding risk review and assessment Conduct Supplier Management Reviews (security assurance and data privacy impact assessment) Ensure documentation and records are maintained in appropriate systems / tools which are updated at required intervals Provide guidance to relevant teams and stakeholders regarding TPRM processes and standards INDIVIDUAL RESPONSIBILITIES: Reviewing and maintaining operating procedures and processes for ongoing monitoring of assurance activities Perform due diligence of potential and existing suppliers and monitoring compliance at periodic intervals Providing regular reporting on third party management to Legal & Compliance, CISO and ExCo as required Assisting in internal and external audits as required Maintaining quality output of information to Bytes customers and ensuring quality standards are met for the suppliers/vendors/partners security posture QUALIFICATIONS, EXPERIENCE, & SKILLS: Educational Qualifications GCSEs or above and 2 years relevant work experience ESSENTIAL Professional Qualifications Certifications in Information Security or Cyber Risk Management domain (e.g. SSCP/Security+/foundation level in ISO standards) DESIRABLE Years of Experience At least 2 years of experience in similar role ESSENTIAL Other Requirements Third Party Risk experience gained from a supplier/vendor management, category management, or business development background Previous use of Third Party screening tools Operational understanding of Third Party Risk Management practices Technical IT experience, with knowledge of common IT controls, networking technologies and security solutions Knowledge of Information Security regulations and standards (e.g. ISO 27001, GDPR, UK Data Protection Act, NIS, NIS2) DESIRABLE Proactiveness, energy and passion for information security Ability to build productive relationships with people from a wide range of professional and cultural backgrounds and the ability to work effectively within a dynamic team environment Excellent written and oral communication skills, with accuracy and attention to detail essential Friendly, approachable, calm and considered Excellent organisational skills, with the ability to plan and manage own workload, and manage tasks simultaneously Ability to work on own initiative, under pressure and to tight timelines
May 15, 2024
Full time
Randalls Way, Leatherhead KT22 7TW, UK Req 07 May 2024 Established in 1982, Bytes has grown rapidly and now employs over 600+ people across 5 locations in the UK and Ireland. Our turnover in Financial Year 2019 was in excess of £520M. We work with SME's, corporates and public sector organisations to modernise and digitally transform their IT infrastructures. We invest in our employees through on-going support, training and advice to help them achieve their career aspirations, rewarding success both financially and personally. There is opportunity to grow and move internally which can be seen through our long-standing employees who have developed existing and new skills to move into senior positions in the organisation leaving space for new team members to begin their journey. Over 600 staff (plans to double in size over the next 5 years) Operating from modern, hybrid working environments with offices in Leatherhead, Reading, London or Manchester Winners of an array of industry awards Sunday Times Top 100 Best Places to Work Excellent training and career prospects offered Fantastic office with gym, canteen, open plan, smart casual dress code, regular incentives and company events Supporters of 85+ charities with strong commitment to diversity and sustainability POSITION DETAILS: Position Title: Position Title: Third Party Compliance Officer Reports to (POSITION): Reports to (POSITION): Legal & Compliance Manager Team: Team: Compliance Department: Department: Legal & Compliance PURPOSE OF JOB: Due to exciting transformation, we are pleased to announce an opportunity for a collaborative, inclusive, and engaging individual, with extensive Third Party Risk experience gained from supplier/vendor management, to join our Compliance team as Third Party Compliance Officer. The primary responsibility for this role will be to interface with our customers, tenders/bids team and account managers to articulate our security posture based on customer security vetting requirements. Secondarily, in this exciting role you will also be responsible for maintaining TPRM principles and standards, ensuring that third party suppliers/vendors/partners are vetted, monitored regularly, and managed to mitigate risks that could negatively impact Bytes. This is an exciting time for the team, and you will play a key role in helping us to mature this function. You will have lots of autonomy and variety with your day-to-day work, giving you a sense of ownership, and the freedom to be curious and bring new ideas to the table. KEY RESPONSIBILITIES: Implementation and operationalisation of third party management systems in line with business strategic direction Management of inbound and outbound third party security assurance including responses to customers and working with appropriate suppliers/vendors/partners New supplier onboarding risk review and assessment Conduct Supplier Management Reviews (security assurance and data privacy impact assessment) Ensure documentation and records are maintained in appropriate systems / tools which are updated at required intervals Provide guidance to relevant teams and stakeholders regarding TPRM processes and standards INDIVIDUAL RESPONSIBILITIES: Reviewing and maintaining operating procedures and processes for ongoing monitoring of assurance activities Perform due diligence of potential and existing suppliers and monitoring compliance at periodic intervals Providing regular reporting on third party management to Legal & Compliance, CISO and ExCo as required Assisting in internal and external audits as required Maintaining quality output of information to Bytes customers and ensuring quality standards are met for the suppliers/vendors/partners security posture QUALIFICATIONS, EXPERIENCE, & SKILLS: Educational Qualifications GCSEs or above and 2 years relevant work experience ESSENTIAL Professional Qualifications Certifications in Information Security or Cyber Risk Management domain (e.g. SSCP/Security+/foundation level in ISO standards) DESIRABLE Years of Experience At least 2 years of experience in similar role ESSENTIAL Other Requirements Third Party Risk experience gained from a supplier/vendor management, category management, or business development background Previous use of Third Party screening tools Operational understanding of Third Party Risk Management practices Technical IT experience, with knowledge of common IT controls, networking technologies and security solutions Knowledge of Information Security regulations and standards (e.g. ISO 27001, GDPR, UK Data Protection Act, NIS, NIS2) DESIRABLE Proactiveness, energy and passion for information security Ability to build productive relationships with people from a wide range of professional and cultural backgrounds and the ability to work effectively within a dynamic team environment Excellent written and oral communication skills, with accuracy and attention to detail essential Friendly, approachable, calm and considered Excellent organisational skills, with the ability to plan and manage own workload, and manage tasks simultaneously Ability to work on own initiative, under pressure and to tight timelines
Reference: BSMW/CISSR/88 Sector: Cybersecurity Town/City: London Contract Type: Contract Closing Date: 24/11/2023 An exciting opportunity has arisen for a proven DV Cleared Chief Information Security Officer (CISO) within the public sector, Acting as a role model for delivery by showing efficiency and focus, while being open to new ideas and honest about challenges; Key Responsibilities You will be responsible for: • Team, collective, and professional leadership, including supporting the development of specialist skills within the organisation. • Establishing governance, building knowledge and networks within the organisation and with our partners across government; • Leading continuous assessment of vulnerabilities to ensure policies are deployed, revised and overseen effectively. Experience • Demonstrable and practical experience at a senior level, in the public or private sector, of working in a combination of risk management, information security, and IT roles; • Experience of leading and motivating large teams against a challenging resource background; • Proven ability to understand complex user and technology needs and provide contextualised security advice or direction to allow those needs to be met securely through operational security arrangements; • Demonstrable experience of setting standards and the development of procedures that deliver end-to-end, tightly monitored environments including in complex organisations; • Experience of leading transformation programmes inside/outside government, ideally featuring an international dimension; • Awareness and understanding of modern, industry standard security issues and processes, HMG security frameworks and knowledge of common information security management frameworks; • Understanding of supply chain risks and implications e.g. awareness of software supply chain challenges; Technical Skills • Specific security technology and understanding. Knowledge of system architectures. Threat awareness. Ability to understand the risk impact of vulnerabilities on existing and future designs and systems and to identify how easy or difficult it will be to exploit these vulnerabilities. • Strong and effective communication with both technical and non-technical teams (security architect). Understand security concepts to be credible and comfortable when engaging with security technologists. Communicating in a language that is appropriate to audience. Ability to respond to challenge. Desirable Criteria • Prior experience as Head of Security/CISO; • Experience of managing tight resource constraints, conflicting priorities and a dynamic programme; • Professional security management certification, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or other similar credentials. Please note: Active DV clearance is required for this role Minorities, women, LGBTQ+ candidates, and individuals with disabilities are encouraged to apply. Interviews will take place next week, so please apply immediately to be considered for this exciting contract role or call Bangura Solutions to discuss this role further.
May 14, 2024
Full time
Reference: BSMW/CISSR/88 Sector: Cybersecurity Town/City: London Contract Type: Contract Closing Date: 24/11/2023 An exciting opportunity has arisen for a proven DV Cleared Chief Information Security Officer (CISO) within the public sector, Acting as a role model for delivery by showing efficiency and focus, while being open to new ideas and honest about challenges; Key Responsibilities You will be responsible for: • Team, collective, and professional leadership, including supporting the development of specialist skills within the organisation. • Establishing governance, building knowledge and networks within the organisation and with our partners across government; • Leading continuous assessment of vulnerabilities to ensure policies are deployed, revised and overseen effectively. Experience • Demonstrable and practical experience at a senior level, in the public or private sector, of working in a combination of risk management, information security, and IT roles; • Experience of leading and motivating large teams against a challenging resource background; • Proven ability to understand complex user and technology needs and provide contextualised security advice or direction to allow those needs to be met securely through operational security arrangements; • Demonstrable experience of setting standards and the development of procedures that deliver end-to-end, tightly monitored environments including in complex organisations; • Experience of leading transformation programmes inside/outside government, ideally featuring an international dimension; • Awareness and understanding of modern, industry standard security issues and processes, HMG security frameworks and knowledge of common information security management frameworks; • Understanding of supply chain risks and implications e.g. awareness of software supply chain challenges; Technical Skills • Specific security technology and understanding. Knowledge of system architectures. Threat awareness. Ability to understand the risk impact of vulnerabilities on existing and future designs and systems and to identify how easy or difficult it will be to exploit these vulnerabilities. • Strong and effective communication with both technical and non-technical teams (security architect). Understand security concepts to be credible and comfortable when engaging with security technologists. Communicating in a language that is appropriate to audience. Ability to respond to challenge. Desirable Criteria • Prior experience as Head of Security/CISO; • Experience of managing tight resource constraints, conflicting priorities and a dynamic programme; • Professional security management certification, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or other similar credentials. Please note: Active DV clearance is required for this role Minorities, women, LGBTQ+ candidates, and individuals with disabilities are encouraged to apply. Interviews will take place next week, so please apply immediately to be considered for this exciting contract role or call Bangura Solutions to discuss this role further.
At Direct Line Group, insurance is just the start. Combining decades of industry experience with talented people in every field from data, technology, customer care and auto repair, to HR, finance and procurement , we're a customer-obsessed market powerhouse. And we all work together to be brilliant for customers, every single day. We're evolving, to be a more digitally-focused data-driven insurance company of the future - and your unique talent, skills and ideas can drive our success. Like us, you thrive on collaboration, exploration and innovation. And like you, we take tech seriously. That's why we're embracing the move to a more digital, flexible world. With constant investment in the newest tools, programmes and equipment for our teams, it all adds up to creating the best possible user experience for customers. And a great career for you. Join us. Own the evolution. We have an exciting opportunity for a Senior Security Operations Analyst to join our re-energised Cyber Defence team! Reporting into the Cyber Defence Security Operations Lead, you will act as the as a secondary contact and escalation point for the team. You'll manage a team of Security Analysts to oversee the day-to-day operational delivery of services provided by our third party 24x7 Security Operations Centre, and will take ownership of our security presence and identify any gaps by working with various stakeholders across the business. What else you'll be doing: Maintaining security oversight of the technical infrastructure delivered by third party suppliers and raising concerns/issues that pose a security risk to the organisation accordingly. You will also manage any operational risk remediation to conclusion and take ownership within the team. Managing development and improvements required for detection engineering and associated technologies. Responsible for the operational and threat malware analysis for the group. Providing security input and for maintaining relationships with the Service Management function in relation to change management, problem management and incident management. Responsible for the level 2 / 3 operational Cyber incident response. Escalating in a timely manner any incidents and anomalies that are detected within DLG and providing subject matter expertise and guidance for operational challenges. Monitoring and responding to emerging threat patterns, vulnerabilities and anomalies and providing escalations of any unknown threats to relevant areas within the company. Collating metrics on the status of technical information security controls across the DLG estate, highlighting risk areas and working to develop and manage remediation plans as required. Collaborating with all CISO teams to report appropriate operational issues that may be resolved at an architecture level Operational On-Call Requirement This role has a shared, rotational 24/7 on-call requirement and forms part of information security incident response capability. You will act as the single point of contact for all security related response actions and decisions, including management of each incident from a security perspective, interaction with IM/MIM teams (where required) and recording of all key security decisions. What you'll need: Knowledge and operational experience in firewalls, intrusion detection and prevention systems, anti-virus and content filtering, URL filtering, authentication solutions, switches, routers, Voice over IP (VoIP), firewall zoning. Ability to read and understand system data including security event logs, system logs, application logs, and device logs, etc. Knowledge and experience of enterprise grade technologies including operating systems, databases, and web applications. Knowledge and experience of performing network traffic analysis for identifying any developing patterns. Ability to assist with knowledge transfer and mentoring/up skilling of junior team members Security Analysis for CompTIA CySA+ or similar level of certification It would be beneficial if you have: Experience with any of the following technologies: Data Loss Prevention, Intrusion Prevention/Detection Systems, Firewalls, SIEM. Knowledge of reporting suites such as Power BI Good understanding of Microsoft security suites and associated qualifications Threat identification. Security certifications such as CISM, CISSP, M.Inst.ISP, CISA by a recognised professional body Technical certifications by a recognised professional body in network or systems engineering Fundamental Cloud Concepts for AWS. OWASP Top 10: API Security Playbook. Ways of Working This role is based out of our London Bridge office. Our hybrid model way of working offers a 'best of both worlds' approach combining the best parts of home and office-working, offering flexibility for everyone. When you'll be in the office depends on your role, but most colleagues are in 2 days a week, and we'll consider the flexible working options that work best for you. Read our flexible working approach here Benefits We wouldn't be where we are today without our people and the wide variety of perspectives and life experiences they bring. That's why we offer excellent benefits to suit your lifestyle and a flexible working model combining the best parts of home and office-working, varying with the nature of your role. Our core benefits include: 9% employer contributed pension Up to 10% bonus 50% off home, motor and pet insurance plus free travel insurance and Green Flag breakdown cover Additional optional Health and Dental insurance EV car scheme which allows all colleagues to lease a brand new electric or plug-in hybrid car in a tax efficient way. 25 days annual leave Buy as you earn share scheme Employee discounts and cashback Plus many more! Being yourself Difference makes us who we are. We believe everyone should feel comfortable to bring their whole selves to work - that's why we champion diverse voices, build workplaces that work for people, and invest in the things that matter. From senior leadership to inclusivity networks, adaptive working to inclusion training, we've made it our mission to give you everything you need to be authentically you. Discover more at Together we're one of a kind.
May 14, 2024
Full time
At Direct Line Group, insurance is just the start. Combining decades of industry experience with talented people in every field from data, technology, customer care and auto repair, to HR, finance and procurement , we're a customer-obsessed market powerhouse. And we all work together to be brilliant for customers, every single day. We're evolving, to be a more digitally-focused data-driven insurance company of the future - and your unique talent, skills and ideas can drive our success. Like us, you thrive on collaboration, exploration and innovation. And like you, we take tech seriously. That's why we're embracing the move to a more digital, flexible world. With constant investment in the newest tools, programmes and equipment for our teams, it all adds up to creating the best possible user experience for customers. And a great career for you. Join us. Own the evolution. We have an exciting opportunity for a Senior Security Operations Analyst to join our re-energised Cyber Defence team! Reporting into the Cyber Defence Security Operations Lead, you will act as the as a secondary contact and escalation point for the team. You'll manage a team of Security Analysts to oversee the day-to-day operational delivery of services provided by our third party 24x7 Security Operations Centre, and will take ownership of our security presence and identify any gaps by working with various stakeholders across the business. What else you'll be doing: Maintaining security oversight of the technical infrastructure delivered by third party suppliers and raising concerns/issues that pose a security risk to the organisation accordingly. You will also manage any operational risk remediation to conclusion and take ownership within the team. Managing development and improvements required for detection engineering and associated technologies. Responsible for the operational and threat malware analysis for the group. Providing security input and for maintaining relationships with the Service Management function in relation to change management, problem management and incident management. Responsible for the level 2 / 3 operational Cyber incident response. Escalating in a timely manner any incidents and anomalies that are detected within DLG and providing subject matter expertise and guidance for operational challenges. Monitoring and responding to emerging threat patterns, vulnerabilities and anomalies and providing escalations of any unknown threats to relevant areas within the company. Collating metrics on the status of technical information security controls across the DLG estate, highlighting risk areas and working to develop and manage remediation plans as required. Collaborating with all CISO teams to report appropriate operational issues that may be resolved at an architecture level Operational On-Call Requirement This role has a shared, rotational 24/7 on-call requirement and forms part of information security incident response capability. You will act as the single point of contact for all security related response actions and decisions, including management of each incident from a security perspective, interaction with IM/MIM teams (where required) and recording of all key security decisions. What you'll need: Knowledge and operational experience in firewalls, intrusion detection and prevention systems, anti-virus and content filtering, URL filtering, authentication solutions, switches, routers, Voice over IP (VoIP), firewall zoning. Ability to read and understand system data including security event logs, system logs, application logs, and device logs, etc. Knowledge and experience of enterprise grade technologies including operating systems, databases, and web applications. Knowledge and experience of performing network traffic analysis for identifying any developing patterns. Ability to assist with knowledge transfer and mentoring/up skilling of junior team members Security Analysis for CompTIA CySA+ or similar level of certification It would be beneficial if you have: Experience with any of the following technologies: Data Loss Prevention, Intrusion Prevention/Detection Systems, Firewalls, SIEM. Knowledge of reporting suites such as Power BI Good understanding of Microsoft security suites and associated qualifications Threat identification. Security certifications such as CISM, CISSP, M.Inst.ISP, CISA by a recognised professional body Technical certifications by a recognised professional body in network or systems engineering Fundamental Cloud Concepts for AWS. OWASP Top 10: API Security Playbook. Ways of Working This role is based out of our London Bridge office. Our hybrid model way of working offers a 'best of both worlds' approach combining the best parts of home and office-working, offering flexibility for everyone. When you'll be in the office depends on your role, but most colleagues are in 2 days a week, and we'll consider the flexible working options that work best for you. Read our flexible working approach here Benefits We wouldn't be where we are today without our people and the wide variety of perspectives and life experiences they bring. That's why we offer excellent benefits to suit your lifestyle and a flexible working model combining the best parts of home and office-working, varying with the nature of your role. Our core benefits include: 9% employer contributed pension Up to 10% bonus 50% off home, motor and pet insurance plus free travel insurance and Green Flag breakdown cover Additional optional Health and Dental insurance EV car scheme which allows all colleagues to lease a brand new electric or plug-in hybrid car in a tax efficient way. 25 days annual leave Buy as you earn share scheme Employee discounts and cashback Plus many more! Being yourself Difference makes us who we are. We believe everyone should feel comfortable to bring their whole selves to work - that's why we champion diverse voices, build workplaces that work for people, and invest in the things that matter. From senior leadership to inclusivity networks, adaptive working to inclusion training, we've made it our mission to give you everything you need to be authentically you. Discover more at Together we're one of a kind.
Job Description: Pet Nutrition (PN) is the most vibrant category in the FMCG sector. As we work to transform this exciting category, a new program, Digital First, has been mobilized by the Mars Pet Nutrition (PN) leadership team. Digital First places pet parents at the center of all we do in Mars PN, while digitalizing a wide range of business process areas, and creating future fit capabilities to achieve ambitious targets in top line growth, earnings, and pet parent centricity. The Digital First agenda requires Digitizing at scale and requires you to demonstrate significant thought leadership, quality decision making, deep technical know-how, and an ability to navigate complex business challenges while building and leading a team of world class data and analytics leaders. Are you passionate about Data and Analytics and excited about how it can completely transform the way an enterprise works? Do you have the strategic vision, technical expertise, and leadership skills to drive data-driven solutions? Do you want to work in a dynamic, fast-growing category? If so, you might be the ideal candidate for the role of Solution Architect Data Foundations, in the Enterprise Architecture function for Global Pet Nutrition (PN) at Mars. The Solution Architect Data Foundations is a strategic leadership role that oversees delivery of cross product transversal data capabilities that is foundational to our success. This role is accountable for the architecture and design and optimization of data platforms, data architecture, data operations, data engineering and the development of data assets/products for the multi-billion-dollar Pet Nutrition division's digital needs. Reporting to the Head of Enterprise Architecture, the person in this role will be a part of the Global PN Architecture of Tomorrow team. The role operates globally and partners with PN business and digital leaders across all functions. 'This role is an incubation role (temporary) with an estimated end date of December 2026. The purpose is to fast-track and support the build of this specific product. At the completion of the product, a permanent BAU role will open to maintain and support the product: the role will be permanent and will have a different job description more suited to the need of the organisation at end state. If you are unable to secure the role by December 2026 you will be eligible for a separation package.' What are we looking for? Bachelor's degree or Equivalent (IT Degree preferred in particular computer science, data science or related field) Industry leading expertise in building and delivering data foundations, preferably in the CPG, or retail industry. Established and deep understanding of a range of technology solutions & business process, across CPG functional capabilities Proven track record of delivering value through data products in a fast-paced, agile environment. Extensive knowledge of data principles, architecture/modeling, ingestion, ETL principles and practices Extensive knowledge of Azure based big data platform & exposure to other clouds such as GCP is desirable. Experience in architect and design data platforms such as data lakes, data warehouses, and the data pipelines and data services that support various types of data and analytics use cases. Prior experience of successfully leading large-scale data initiatives to support analytics, BI & AI use cases. Prior experience in decentralized data management, specifically, in data governance of managing fragmented data domains like sales, finance, marketing. Proven track record of establishing and leading a DDF design authority Proven track record to master new and emerging technologies Successful experience, established over several years, to perform architecture leadership within a Technology environment A strong customer centric mindset especially within an internal customer base with the purpose of driving adoption and use Strategic thinking, problem solving and innovation, with the ability to anticipate and navigate challenges and opportunities. Excellent in engaging with technical and functional leadership in a matrix organization. Ability to navigate complex matrix organisation What will be your key responsibilities? Mars Principles: Live and exemplify the Five Principles of Mars, Inc. within self and team. Strategy and Thought Leadership: Work with PN Digital Leadership to create and execute the data foundations strategy and roadmap for the Pet Nutrition segment, in alignment with the Pet Nutrition's business strategic priorities, goals and analytics needs. Stakeholder Engagement: Collaborate with PN D&A leadership, PN product owners, and segment D&A leadership. You align with and support Enterprise architecture efforts in Mars Petcare, corporate EA, GDO, CISO teams. Architectural governance, review and assurance: you are accountable for effective and proportionate governance to approve or reject high level solution designs, solution architectures, other Technology services or substantial changes to existing services for compliance, including granting waivers where justified. You ensure that critical DDF design decisions and issues escalated by delivery teams across PN DT are reviewed and resolved promptly. You ensure that the governance, review and assurance processes provide insight and information to drive future revisions of the strategy and roadmap, so that the Technology architecture continues to evolve to meet the changing needs of the Mars PN. You drive architectural governance, review and assurance in partnership with the Technology Leadership Team, PN/Petcare/Corporate EAs and colleagues in the wider Mars PN. Roadmap to achieve the target architecture: you are accountable for setting out a roadmap to move from the current state architecture to the target architecture for DDF, taking account of the change portfolio and expected future change plans. You ensure that the roadmap is maintained to account for evolving requirements. Data as a Product: Bring technical mastery, knowledge, and acumen to lead the creation and deployment of scalable, secure data platforms and data assets tailored to our organization's evolving requirements while ensuring data quality and trust. Embed thought leadership in modeling data such that it is domain driven, easly discoverable and self service enabled (where appropriate) with a strong-willed approach to avoid duplication and promote trust and integrity in data assets. What can you expect from Mars? Work with over 130,000 diverse and talented Associates, all guided by the Five Principles. Join a purpose-driven company where we're striving to build the world we want tomorrow, today. Best-in-class learning and development support from day one, including access to our in-house Mars University. An industry-competitive salary and benefits package, including company bonus. Mars is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law. If you need assistance or an accommodation during the application process because of a disability, it is available upon request. The company is pleased to provide such assistance, and no applicant will be penalized as a result of such a request.
May 11, 2024
Full time
Job Description: Pet Nutrition (PN) is the most vibrant category in the FMCG sector. As we work to transform this exciting category, a new program, Digital First, has been mobilized by the Mars Pet Nutrition (PN) leadership team. Digital First places pet parents at the center of all we do in Mars PN, while digitalizing a wide range of business process areas, and creating future fit capabilities to achieve ambitious targets in top line growth, earnings, and pet parent centricity. The Digital First agenda requires Digitizing at scale and requires you to demonstrate significant thought leadership, quality decision making, deep technical know-how, and an ability to navigate complex business challenges while building and leading a team of world class data and analytics leaders. Are you passionate about Data and Analytics and excited about how it can completely transform the way an enterprise works? Do you have the strategic vision, technical expertise, and leadership skills to drive data-driven solutions? Do you want to work in a dynamic, fast-growing category? If so, you might be the ideal candidate for the role of Solution Architect Data Foundations, in the Enterprise Architecture function for Global Pet Nutrition (PN) at Mars. The Solution Architect Data Foundations is a strategic leadership role that oversees delivery of cross product transversal data capabilities that is foundational to our success. This role is accountable for the architecture and design and optimization of data platforms, data architecture, data operations, data engineering and the development of data assets/products for the multi-billion-dollar Pet Nutrition division's digital needs. Reporting to the Head of Enterprise Architecture, the person in this role will be a part of the Global PN Architecture of Tomorrow team. The role operates globally and partners with PN business and digital leaders across all functions. 'This role is an incubation role (temporary) with an estimated end date of December 2026. The purpose is to fast-track and support the build of this specific product. At the completion of the product, a permanent BAU role will open to maintain and support the product: the role will be permanent and will have a different job description more suited to the need of the organisation at end state. If you are unable to secure the role by December 2026 you will be eligible for a separation package.' What are we looking for? Bachelor's degree or Equivalent (IT Degree preferred in particular computer science, data science or related field) Industry leading expertise in building and delivering data foundations, preferably in the CPG, or retail industry. Established and deep understanding of a range of technology solutions & business process, across CPG functional capabilities Proven track record of delivering value through data products in a fast-paced, agile environment. Extensive knowledge of data principles, architecture/modeling, ingestion, ETL principles and practices Extensive knowledge of Azure based big data platform & exposure to other clouds such as GCP is desirable. Experience in architect and design data platforms such as data lakes, data warehouses, and the data pipelines and data services that support various types of data and analytics use cases. Prior experience of successfully leading large-scale data initiatives to support analytics, BI & AI use cases. Prior experience in decentralized data management, specifically, in data governance of managing fragmented data domains like sales, finance, marketing. Proven track record of establishing and leading a DDF design authority Proven track record to master new and emerging technologies Successful experience, established over several years, to perform architecture leadership within a Technology environment A strong customer centric mindset especially within an internal customer base with the purpose of driving adoption and use Strategic thinking, problem solving and innovation, with the ability to anticipate and navigate challenges and opportunities. Excellent in engaging with technical and functional leadership in a matrix organization. Ability to navigate complex matrix organisation What will be your key responsibilities? Mars Principles: Live and exemplify the Five Principles of Mars, Inc. within self and team. Strategy and Thought Leadership: Work with PN Digital Leadership to create and execute the data foundations strategy and roadmap for the Pet Nutrition segment, in alignment with the Pet Nutrition's business strategic priorities, goals and analytics needs. Stakeholder Engagement: Collaborate with PN D&A leadership, PN product owners, and segment D&A leadership. You align with and support Enterprise architecture efforts in Mars Petcare, corporate EA, GDO, CISO teams. Architectural governance, review and assurance: you are accountable for effective and proportionate governance to approve or reject high level solution designs, solution architectures, other Technology services or substantial changes to existing services for compliance, including granting waivers where justified. You ensure that critical DDF design decisions and issues escalated by delivery teams across PN DT are reviewed and resolved promptly. You ensure that the governance, review and assurance processes provide insight and information to drive future revisions of the strategy and roadmap, so that the Technology architecture continues to evolve to meet the changing needs of the Mars PN. You drive architectural governance, review and assurance in partnership with the Technology Leadership Team, PN/Petcare/Corporate EAs and colleagues in the wider Mars PN. Roadmap to achieve the target architecture: you are accountable for setting out a roadmap to move from the current state architecture to the target architecture for DDF, taking account of the change portfolio and expected future change plans. You ensure that the roadmap is maintained to account for evolving requirements. Data as a Product: Bring technical mastery, knowledge, and acumen to lead the creation and deployment of scalable, secure data platforms and data assets tailored to our organization's evolving requirements while ensuring data quality and trust. Embed thought leadership in modeling data such that it is domain driven, easly discoverable and self service enabled (where appropriate) with a strong-willed approach to avoid duplication and promote trust and integrity in data assets. What can you expect from Mars? Work with over 130,000 diverse and talented Associates, all guided by the Five Principles. Join a purpose-driven company where we're striving to build the world we want tomorrow, today. Best-in-class learning and development support from day one, including access to our in-house Mars University. An industry-competitive salary and benefits package, including company bonus. Mars is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law. If you need assistance or an accommodation during the application process because of a disability, it is available upon request. The company is pleased to provide such assistance, and no applicant will be penalized as a result of such a request.
Job Description: Pet Nutrition (PN) is the most vibrant category in the FMCG sector. As we work to transform this exciting category, a new program, Digital First, has been mobilized by the Mars Pet Nutrition (PN) leadership team. Digital First places pet parents at the center of all we do in Mars PN, while digitalizing a wide range of business process areas, and creating future fit capabilities to achieve ambitious targets in top line growth, earnings, and pet parent centricity. The Digital First agenda requires Digitizing at scale and requires you to demonstrate significant thought leadership, quality decision making, deep technical know-how, and an ability to navigate complex business challenges. Are you passionate about increasing sales, revenue, price the products effectively, saving cost via Digital, Analytics and excited about how it can completely transform the way an organization efficiently and effectively manage its longer-term financial health? Do you have the strategic vision, technical expertise, and leadership skills to drive digital & data-driven solutions? Do you want to work in a dynamic, fast-growing category? If so, you might be the ideal candidate for the role of Integrated SRM - Solution architect in the Enterprise Architecture function for Global Pet Nutrition (PN) at Mars. The Integrated SRM - Solution Architect is a technical leadership role that oversees delivery of digital and data capabilities that are critical to the success of our Enterprise. This role is responsible for the architecture, design and optimization of digital and data platforms, data engineering and the development of the Integrated SRM product for the multi-billion-dollar Pet Nutrition division. Reporting to the Head of Enterprise Architecture, the person in this role will be a part of the Global PN Architecture of Tomorrow team. The role operates globally and partners with PN business and digital leaders across all functions. 'This role is an incubation role (temporary) with an estimated end date of December 2026. The purpose is to fast-track and support the build of this specific product. At the completion of the product, a permanent BAU role will open to maintain and support the product: the role will be permanent and will have a different job description more suited to the need of the organisation at end state. If you are unable to secure the role by December 2026 you will be eligible for a separation package.' What are we looking for? Bachelor's degree or Equivalent (IT Degree preferred in particular computer science, data science or related field) Industry-leading expertise in building and delivering Integrated SRM solutions. Understanding of revenue management principles and levers such as pricing, promo, mix or PPA. Experienced on delivery of analytical products on the SRM space including deep knowledge on identifying, extracting, and integrating data from various internal and external sources relevant to revenue management is essential. Prior experience on conducting price elasticity and sensitivity analysis and/or exposure to statistical modelling methods is a plus. Lead the definition and establishment of technical principles and framework for the SRM transformation and support the design scalable, robust, and flexible technical solutions aligned with SRM best practices Established and deep understanding of a range of technology solutions & business process, across Sales/Marketing/Finance domain. Proven track record of delivering value through data products in a fast-paced, agile environment. Extensive knowledge of data principles, architecture/modelling, ingestion, ETL, visualisation Extensive knowledge of Azure based big data platform & exposure to other clouds such as GCP is desirable. Prior experience of successfully leading large-scale data initiatives to support analytics, BI & AI use cases. Proven track record of presenting solution options to design authorities and governance forums Proven track record to master new and emerging technologies Successful experience, established over several years, to perform architecture leadership within a Technology environment A strong customer centric mindset especially within an internal customer base with the purpose of driving adoption and use Strategic thinking, problem solving and innovation, with the ability to anticipate and navigate challenges and opportunities. Excellent in engaging with technical and functional leadership in a matrix organization. Ability to navigate complex matrix organisation Motivational and thought leading Ability to adapt to a fast-paced, dynamic work environment and manage multiple priorities Experience working in a multi-region business team with potentially conflicting needs/views and ability to navigate a complex organizational landscape Must be customer focused with demonstrated ability to form productive relationship including business & DT leaders Learning agility and desire to learn new technology and business What will be your key responsibilities? M ars Principles: Live and exemplify the Five Principles of Mars, Inc. within self and team. Strategy and Thought Leadership: Work with PN Digital Leadership & Integrated SRM product leadership to create and execute the Integrated SRM strategy and roadmap for the Pet Nutrition segment, in alignment with the Pet Nutrition's business strategic priorities and goals. Bring the "outside-In" by maintaining an external network of digital professionals to deliver value faster and build our capabilities of the future. Stakeholder Engagement: Collaborate with PN brand, Sales, Marketing, Finance, CMI, Digital Leadership & Integrated SRM product team. You align with and support Enterprise architecture efforts in Mars Petcare, Enterprise architecture (EA), Global delivery organisation(GDO), CISO teams. Architectural governance, review and assurance: you are accountable for effective and proportionate governance to approve or reject high level solution designs, solution architectures, other Technology services including granting waivers where justified. You ensure that critical Integrated SRM design decisions and issues escalated by delivery teams across PN DT & business are reviewed and resolved promptly. You drive architectural governance, review and assurance in partnership with the Technology Leadership Team, PN/Petcare/Corporate EAs and colleagues in the wider Mars PN. Roadmap to achieve the target architecture: you are accountable for setting out a roadmap to move from the current state architecture to the target architecture for Integrated SRM product, taking account of the change portfolio and expected future change plans. You will also consider Market Archetypes where appropriate to ensure relevant solutions are proposed and implemented. Work with development team: you are expected to work with development teams/Sis to guide and offer expert advice to ensure the application is built the highest standards and is in line with Mars PN EA architecture principles and above all, the solutions meet business requirements. Ensure comprehensive documentation, including solution architecture diagrams, technical specifications, and user guides are produced. What can you expect from Mars? Work with over 130,000 diverse and talented Associates, all guided by the Five Principles. Join a purpose-driven company where we're striving to build the world we want tomorrow, today. Best-in-class learning and development support from day one, including access to our in-house Mars University. An industry-competitive salary and benefits package, including company bonus. Mars is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law. If you need assistance or an accommodation during the application process because of a disability, it is available upon request. The company is pleased to provide such assistance, and no applicant will be penalized as a result of such a request.
May 11, 2024
Full time
Job Description: Pet Nutrition (PN) is the most vibrant category in the FMCG sector. As we work to transform this exciting category, a new program, Digital First, has been mobilized by the Mars Pet Nutrition (PN) leadership team. Digital First places pet parents at the center of all we do in Mars PN, while digitalizing a wide range of business process areas, and creating future fit capabilities to achieve ambitious targets in top line growth, earnings, and pet parent centricity. The Digital First agenda requires Digitizing at scale and requires you to demonstrate significant thought leadership, quality decision making, deep technical know-how, and an ability to navigate complex business challenges. Are you passionate about increasing sales, revenue, price the products effectively, saving cost via Digital, Analytics and excited about how it can completely transform the way an organization efficiently and effectively manage its longer-term financial health? Do you have the strategic vision, technical expertise, and leadership skills to drive digital & data-driven solutions? Do you want to work in a dynamic, fast-growing category? If so, you might be the ideal candidate for the role of Integrated SRM - Solution architect in the Enterprise Architecture function for Global Pet Nutrition (PN) at Mars. The Integrated SRM - Solution Architect is a technical leadership role that oversees delivery of digital and data capabilities that are critical to the success of our Enterprise. This role is responsible for the architecture, design and optimization of digital and data platforms, data engineering and the development of the Integrated SRM product for the multi-billion-dollar Pet Nutrition division. Reporting to the Head of Enterprise Architecture, the person in this role will be a part of the Global PN Architecture of Tomorrow team. The role operates globally and partners with PN business and digital leaders across all functions. 'This role is an incubation role (temporary) with an estimated end date of December 2026. The purpose is to fast-track and support the build of this specific product. At the completion of the product, a permanent BAU role will open to maintain and support the product: the role will be permanent and will have a different job description more suited to the need of the organisation at end state. If you are unable to secure the role by December 2026 you will be eligible for a separation package.' What are we looking for? Bachelor's degree or Equivalent (IT Degree preferred in particular computer science, data science or related field) Industry-leading expertise in building and delivering Integrated SRM solutions. Understanding of revenue management principles and levers such as pricing, promo, mix or PPA. Experienced on delivery of analytical products on the SRM space including deep knowledge on identifying, extracting, and integrating data from various internal and external sources relevant to revenue management is essential. Prior experience on conducting price elasticity and sensitivity analysis and/or exposure to statistical modelling methods is a plus. Lead the definition and establishment of technical principles and framework for the SRM transformation and support the design scalable, robust, and flexible technical solutions aligned with SRM best practices Established and deep understanding of a range of technology solutions & business process, across Sales/Marketing/Finance domain. Proven track record of delivering value through data products in a fast-paced, agile environment. Extensive knowledge of data principles, architecture/modelling, ingestion, ETL, visualisation Extensive knowledge of Azure based big data platform & exposure to other clouds such as GCP is desirable. Prior experience of successfully leading large-scale data initiatives to support analytics, BI & AI use cases. Proven track record of presenting solution options to design authorities and governance forums Proven track record to master new and emerging technologies Successful experience, established over several years, to perform architecture leadership within a Technology environment A strong customer centric mindset especially within an internal customer base with the purpose of driving adoption and use Strategic thinking, problem solving and innovation, with the ability to anticipate and navigate challenges and opportunities. Excellent in engaging with technical and functional leadership in a matrix organization. Ability to navigate complex matrix organisation Motivational and thought leading Ability to adapt to a fast-paced, dynamic work environment and manage multiple priorities Experience working in a multi-region business team with potentially conflicting needs/views and ability to navigate a complex organizational landscape Must be customer focused with demonstrated ability to form productive relationship including business & DT leaders Learning agility and desire to learn new technology and business What will be your key responsibilities? M ars Principles: Live and exemplify the Five Principles of Mars, Inc. within self and team. Strategy and Thought Leadership: Work with PN Digital Leadership & Integrated SRM product leadership to create and execute the Integrated SRM strategy and roadmap for the Pet Nutrition segment, in alignment with the Pet Nutrition's business strategic priorities and goals. Bring the "outside-In" by maintaining an external network of digital professionals to deliver value faster and build our capabilities of the future. Stakeholder Engagement: Collaborate with PN brand, Sales, Marketing, Finance, CMI, Digital Leadership & Integrated SRM product team. You align with and support Enterprise architecture efforts in Mars Petcare, Enterprise architecture (EA), Global delivery organisation(GDO), CISO teams. Architectural governance, review and assurance: you are accountable for effective and proportionate governance to approve or reject high level solution designs, solution architectures, other Technology services including granting waivers where justified. You ensure that critical Integrated SRM design decisions and issues escalated by delivery teams across PN DT & business are reviewed and resolved promptly. You drive architectural governance, review and assurance in partnership with the Technology Leadership Team, PN/Petcare/Corporate EAs and colleagues in the wider Mars PN. Roadmap to achieve the target architecture: you are accountable for setting out a roadmap to move from the current state architecture to the target architecture for Integrated SRM product, taking account of the change portfolio and expected future change plans. You will also consider Market Archetypes where appropriate to ensure relevant solutions are proposed and implemented. Work with development team: you are expected to work with development teams/Sis to guide and offer expert advice to ensure the application is built the highest standards and is in line with Mars PN EA architecture principles and above all, the solutions meet business requirements. Ensure comprehensive documentation, including solution architecture diagrams, technical specifications, and user guides are produced. What can you expect from Mars? Work with over 130,000 diverse and talented Associates, all guided by the Five Principles. Join a purpose-driven company where we're striving to build the world we want tomorrow, today. Best-in-class learning and development support from day one, including access to our in-house Mars University. An industry-competitive salary and benefits package, including company bonus. Mars is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law. If you need assistance or an accommodation during the application process because of a disability, it is available upon request. The company is pleased to provide such assistance, and no applicant will be penalized as a result of such a request.
The company: A private TechForGood business in the North East is going through a process of global expansion and is looking for a Head of Information Security to drive excellence across security practices. Over the past 4 years, they have grown from a team of 20 to 250 and have quadrupled their profits. They work across a range of practices within a specific sector, and the use of technology makes a genuine difference in people's lives. Over the next 4 years, they plan to replicate this success and are looking for innovative and proactive people to joint them on the journey. The role: You will be responsible for ensuring that the software and applications that the clients are onboarded onto are secure and compliant. You will have a focus on the protection of data for customers, business partners, employees and third parties. This is going to be a fast-paced role, so the ability to zoom out, prioritise and lead projects will be key, as multiple clients may be being onboarded at one time. You will need to develop, implement, and monitor a strategic, comprehensive enterprise information security and IT risk management program across the whole group. Collaborating with the senior leadership team and key stakeholders will be a large part of this role, so excellent communication will be key. Day-to-day tasks will include Secure information assets and ensure information security and compliance with relevant legislation and legal interpretation. Facilitate risk assessment and risk management processes. Develop and implement group-wide adoption of ISO 27001 and Cyber Essentials Plus Ensure group-wide compliance with PCI, GDPR, NHS DSP Toolkit Raise awareness of risk management concerns. Ensure best practice from a security perspective in the development practices, for example driving secure coding practices, communicating OWASP top 10 etc Stay up-to-date with information security issues and regulatory changes Monitor all security incidents and act as the primary control point during significant information security incidents. Coaching and mentoring IT and Engineering teams regarding security best practices Maintain continual growth in professional skills and knowledge Experience required: Possess extensive knowledge and experience of IT security and compliance frameworks at all levels. Have strong experience with SaaS/Cloud-based solutions. Demonstrate a strong technical background covering IT, Infrastructure, and Software Development with experience across a broad range of architectures, technologies, and development practices. Exhibit strong team leadership skills, including motivation, performance management, cultural awareness, coaching, and development. Have extensive stakeholder management experience up to board level. Benefits include: 28 Days annual leave + public holidays Holiday buy scheme Enhanced company pension Company bonus scheme Share options Sick pay scheme Income protection Private health insurance cash plan Life assurance Flexible benefits including discounted gym, cycle to work, technology scheme, shopping discounts etc. Permanent/ 37.5 hours/ 1 day per week in office/ Monday - Friday/ CISO Next Steps? If you would like to know anything more about this role or even just want to hear what other Infrastructure, Cloud and Security positions I have that may also be a good match for you then please apply to this advert / or catch me on LinkedIn "Hayley Bee
May 10, 2024
Full time
The company: A private TechForGood business in the North East is going through a process of global expansion and is looking for a Head of Information Security to drive excellence across security practices. Over the past 4 years, they have grown from a team of 20 to 250 and have quadrupled their profits. They work across a range of practices within a specific sector, and the use of technology makes a genuine difference in people's lives. Over the next 4 years, they plan to replicate this success and are looking for innovative and proactive people to joint them on the journey. The role: You will be responsible for ensuring that the software and applications that the clients are onboarded onto are secure and compliant. You will have a focus on the protection of data for customers, business partners, employees and third parties. This is going to be a fast-paced role, so the ability to zoom out, prioritise and lead projects will be key, as multiple clients may be being onboarded at one time. You will need to develop, implement, and monitor a strategic, comprehensive enterprise information security and IT risk management program across the whole group. Collaborating with the senior leadership team and key stakeholders will be a large part of this role, so excellent communication will be key. Day-to-day tasks will include Secure information assets and ensure information security and compliance with relevant legislation and legal interpretation. Facilitate risk assessment and risk management processes. Develop and implement group-wide adoption of ISO 27001 and Cyber Essentials Plus Ensure group-wide compliance with PCI, GDPR, NHS DSP Toolkit Raise awareness of risk management concerns. Ensure best practice from a security perspective in the development practices, for example driving secure coding practices, communicating OWASP top 10 etc Stay up-to-date with information security issues and regulatory changes Monitor all security incidents and act as the primary control point during significant information security incidents. Coaching and mentoring IT and Engineering teams regarding security best practices Maintain continual growth in professional skills and knowledge Experience required: Possess extensive knowledge and experience of IT security and compliance frameworks at all levels. Have strong experience with SaaS/Cloud-based solutions. Demonstrate a strong technical background covering IT, Infrastructure, and Software Development with experience across a broad range of architectures, technologies, and development practices. Exhibit strong team leadership skills, including motivation, performance management, cultural awareness, coaching, and development. Have extensive stakeholder management experience up to board level. Benefits include: 28 Days annual leave + public holidays Holiday buy scheme Enhanced company pension Company bonus scheme Share options Sick pay scheme Income protection Private health insurance cash plan Life assurance Flexible benefits including discounted gym, cycle to work, technology scheme, shopping discounts etc. Permanent/ 37.5 hours/ 1 day per week in office/ Monday - Friday/ CISO Next Steps? If you would like to know anything more about this role or even just want to hear what other Infrastructure, Cloud and Security positions I have that may also be a good match for you then please apply to this advert / or catch me on LinkedIn "Hayley Bee
Our client are an international law firm with offices in many key offshore jurisdictions, as well as a presence in the international financial centres of Hong Kong and Shanghai. In order to maintain pace with every evolving technology requirements and need to IT security vigilence, the now require an IT Security Engineer for their Isle of Man team. The Security Engineer's primary responsibility is to configure and monitor the security enforcing controls, both technical and procedural, to carry out administrative tasks on the security monitoring applications, and ensure the effective running of the tools in support of the Appleby business objectives.Under the guidance of the CISO, you will deliver the required security operational activities, as well as provide support to other teams within IT, working closely with other members of the team to identify, recommend, develop, implement, and support cost-effective security improvements. Responsibilities will include: Proactive support and maintenance of the protective monitoring tools especially the SIEM and Encryption solutions Monitoring security alerts and acting as a first responder Carry out "threat hunting" to identify potential threat and targeted attacks Investigate security incidents (for example, suspicious emails, suspected breaches, etc.) and recommend remedial actions Document and maintain security procedures and processes Escalate security issues and incidents to the CISO Act as the initial Point of Contact for security incidents within the geographic location Carry out or assist with internal security audits Carry out technical security assessments using the defined tools (for example Nessus) The ideal candidate for the role of Security Engineer will have: Excellent knowledge of Splunk and Vormetric Excellent analytical and problem solving skills, couple with excellent interpersonal, written and oral communication skills A minimum of 5 years' technical experience Relevant industry qualification and/or experience in current technologies Experience in working with security enforcing products and controls Working knowledge of ethical hacking tools and methodologies Proven experience of log analysis and systematic analysis of interconnected systems Good knowledge of network technologies, LAN, WAN etc. Good knowledge on Windows OS Knowledge of firewalls and AI Network Monitoring Skilled at working within a team-orientated collaborative environment, with the ability to also work independently Ability to present ideas using business and user friendly language Highly self-motivated with a keen attention to detail Strongly customer service oriented Demonstrated ability to apply security in supporting business objectives Ability to effectively prioritise and execute tasks in a high-pressure environment Knowledge of physical security would be advantageous
May 10, 2024
Full time
Our client are an international law firm with offices in many key offshore jurisdictions, as well as a presence in the international financial centres of Hong Kong and Shanghai. In order to maintain pace with every evolving technology requirements and need to IT security vigilence, the now require an IT Security Engineer for their Isle of Man team. The Security Engineer's primary responsibility is to configure and monitor the security enforcing controls, both technical and procedural, to carry out administrative tasks on the security monitoring applications, and ensure the effective running of the tools in support of the Appleby business objectives.Under the guidance of the CISO, you will deliver the required security operational activities, as well as provide support to other teams within IT, working closely with other members of the team to identify, recommend, develop, implement, and support cost-effective security improvements. Responsibilities will include: Proactive support and maintenance of the protective monitoring tools especially the SIEM and Encryption solutions Monitoring security alerts and acting as a first responder Carry out "threat hunting" to identify potential threat and targeted attacks Investigate security incidents (for example, suspicious emails, suspected breaches, etc.) and recommend remedial actions Document and maintain security procedures and processes Escalate security issues and incidents to the CISO Act as the initial Point of Contact for security incidents within the geographic location Carry out or assist with internal security audits Carry out technical security assessments using the defined tools (for example Nessus) The ideal candidate for the role of Security Engineer will have: Excellent knowledge of Splunk and Vormetric Excellent analytical and problem solving skills, couple with excellent interpersonal, written and oral communication skills A minimum of 5 years' technical experience Relevant industry qualification and/or experience in current technologies Experience in working with security enforcing products and controls Working knowledge of ethical hacking tools and methodologies Proven experience of log analysis and systematic analysis of interconnected systems Good knowledge of network technologies, LAN, WAN etc. Good knowledge on Windows OS Knowledge of firewalls and AI Network Monitoring Skilled at working within a team-orientated collaborative environment, with the ability to also work independently Ability to present ideas using business and user friendly language Highly self-motivated with a keen attention to detail Strongly customer service oriented Demonstrated ability to apply security in supporting business objectives Ability to effectively prioritise and execute tasks in a high-pressure environment Knowledge of physical security would be advantageous
Technology Risk Manager Outside IR35 - Up to 550 per day Remote - 3x Site visits across the 6 month period (Dublin and London) Start Date - ASAP I am working with a large investment company based in London that provides financial and technology solutions to the global investment industry. Must Haves: Develop a Technology Risk Management framework, aligned to the Group Operational Risk Management framework, and embed this effectively across the Technology organisation Review/consolidate existing practices, ensuring any risks currently captured are reviewed, validated and where required, embedded into the new framework Support Technology in the identification and quantification of Technology risks. Maintaining a Technology Risk Register. Establishing KPIs, KRIs and metrics. Provide regular reporting on Technology Risk to various internal committees and forums - including the Risk Committee, BOC, ISPDGF, IT Operating Committee. Monitoring of risk reduction initiatives and remediation plans for closure. Support the Risk department at a policy level regarding: Setting and monitoring risk appetite Review and refresh of Risk Management Policy and Framework Support change management activities across Technology and the wider business. IT BAU changes Business Change initiatives Third Party Risk Management Maintain independence from 1st Technology operations through reporting via the CISO's 2nd line responsibilities, to ensure regulatory obligations are fulfilled (e.g. DORA)
May 09, 2024
Contractor
Technology Risk Manager Outside IR35 - Up to 550 per day Remote - 3x Site visits across the 6 month period (Dublin and London) Start Date - ASAP I am working with a large investment company based in London that provides financial and technology solutions to the global investment industry. Must Haves: Develop a Technology Risk Management framework, aligned to the Group Operational Risk Management framework, and embed this effectively across the Technology organisation Review/consolidate existing practices, ensuring any risks currently captured are reviewed, validated and where required, embedded into the new framework Support Technology in the identification and quantification of Technology risks. Maintaining a Technology Risk Register. Establishing KPIs, KRIs and metrics. Provide regular reporting on Technology Risk to various internal committees and forums - including the Risk Committee, BOC, ISPDGF, IT Operating Committee. Monitoring of risk reduction initiatives and remediation plans for closure. Support the Risk department at a policy level regarding: Setting and monitoring risk appetite Review and refresh of Risk Management Policy and Framework Support change management activities across Technology and the wider business. IT BAU changes Business Change initiatives Third Party Risk Management Maintain independence from 1st Technology operations through reporting via the CISO's 2nd line responsibilities, to ensure regulatory obligations are fulfilled (e.g. DORA)
Crisis24 Ltd, Avalon, 26-32 Oxford Road, Bournemouth, Bournemouth, United Kingdom Crisis24 Ltd, Two, London Bridge, London, London, City of, United Kingdom Req Monday, March 18, 2024 About Crisis24 Crisis24, a GardaWorld company, is widely regarded as the leading integrated risk management, crisis response, consulting, and global protective solutions firm, serving the world's most influential people, disruptive brands, and prominent organizations. Championed by our advanced Global Operation Centers and our skilled team of intelligence analysts, we offer highly specialized services, security and consulting, with the technology and AI to power it all across the globe. At Crisis24, we go beyond mere employment; we pave the way to a realm where your skills become instrumental in shaping global security, guiding clients through a multifaceted and challenging landscape. Your journey with us will be deeply fulfilling, driven by a powerful sense of purpose and accomplishment. Within our thriving environment, you'll discover abundant chances for both personal and career advancement. Seize this moment to push your limits, broaden your expertise, and elevate your professional journey to unprecedented levels. Join the Crisis24 team today and be a part of something extraordinary where growth and impact converge. Crisis24 is seeking a talented and motivated Solutions Engineer to join our growing team. In this role, you will play a pivotal role in the pre-sales process, translating complex technical concepts into clear and compelling solutions for our customers. You will work closely with the sales team to understand customer needs and design tailored solutions using our software solutions. What You Will Work On Collaborate with the sales team to identify customer challenges and opportunities. Deeply understand our software products and their capabilities. Design and present customized solutions that address specific customer needs. Conduct technical demonstrations and proof-of-concept projects. Support the sales team throughout the sales cycle, providing technical expertise and guidance. Partner with the product and engineering teams to ensure smooth product implementation and integration. Gather customer feedback and identify areas for product improvement. Stay up to date on the latest industry trends and technologies. Assist with special projects where application design, configuration and consulting is required. Support the implementation team in deploying demonstrated solutions at client locations. Provide technical assistance to the customer success organization in supporting client deployed solutions. Provide regular product feedback to the Crisis24 product and development teams to ensure new market requirements are captured and implemented. Who You Will Work With Security (CSO, Operations, Cyber, Executive Protection) Business Continuity (Operations, Facilities, Business Resiliency) Travel (Travel Leadership and Management) Information Security (CISO, IT Operations) What You Will Bring BA/BS degree in in a business or technical related field. Minimum of 5 years of experience in a technical sales or solutions engineering role. Experience creating solutions for and demonstrating SaaS technology solutions. Excellent communication and presentation skills, both written and verbal. Ability to build strong relationships with customers and internal stakeholders. Problem-solving skills and a passion for finding innovative solutions. Experience with the security industry is a plus. Passionate about Crisis24's business, industry; eager to master product and service knowledge. Experience with CRM software (e.g. Salesforce), MS Office, MS Teams, SharePoint, JIRA, and Help Desk Support Software Periodic travel up to 25% may be required. Flexibility in work hours required to support global sales initiatives. Fluency in German and / or French a strong advantage. Information Security Protect the data and systems of Crisis24 and its stakeholders by adhering to policies, reporting incidents and potential problems, completing regular training, and identifying opportunities for improvement. Crisis24, A GardaWorld Company is dedicated to equal opportunity in employment. We are committed to a work environment that celebrates diversity. We do not discriminate against any individual based on race, color, sex, national origin, age, religion, marital or parental status, sexual orientation, gender identity, gender expression, military or veteran status, disability, or any factors protected by applicable laws. Crisis24 Ltd, Avalon, 26-32 Oxford Road, Bournemouth, Bournemouth, United Kingdom Crisis24 Ltd, Two, London Bridge, London, London, City of, United Kingdom
May 08, 2024
Full time
Crisis24 Ltd, Avalon, 26-32 Oxford Road, Bournemouth, Bournemouth, United Kingdom Crisis24 Ltd, Two, London Bridge, London, London, City of, United Kingdom Req Monday, March 18, 2024 About Crisis24 Crisis24, a GardaWorld company, is widely regarded as the leading integrated risk management, crisis response, consulting, and global protective solutions firm, serving the world's most influential people, disruptive brands, and prominent organizations. Championed by our advanced Global Operation Centers and our skilled team of intelligence analysts, we offer highly specialized services, security and consulting, with the technology and AI to power it all across the globe. At Crisis24, we go beyond mere employment; we pave the way to a realm where your skills become instrumental in shaping global security, guiding clients through a multifaceted and challenging landscape. Your journey with us will be deeply fulfilling, driven by a powerful sense of purpose and accomplishment. Within our thriving environment, you'll discover abundant chances for both personal and career advancement. Seize this moment to push your limits, broaden your expertise, and elevate your professional journey to unprecedented levels. Join the Crisis24 team today and be a part of something extraordinary where growth and impact converge. Crisis24 is seeking a talented and motivated Solutions Engineer to join our growing team. In this role, you will play a pivotal role in the pre-sales process, translating complex technical concepts into clear and compelling solutions for our customers. You will work closely with the sales team to understand customer needs and design tailored solutions using our software solutions. What You Will Work On Collaborate with the sales team to identify customer challenges and opportunities. Deeply understand our software products and their capabilities. Design and present customized solutions that address specific customer needs. Conduct technical demonstrations and proof-of-concept projects. Support the sales team throughout the sales cycle, providing technical expertise and guidance. Partner with the product and engineering teams to ensure smooth product implementation and integration. Gather customer feedback and identify areas for product improvement. Stay up to date on the latest industry trends and technologies. Assist with special projects where application design, configuration and consulting is required. Support the implementation team in deploying demonstrated solutions at client locations. Provide technical assistance to the customer success organization in supporting client deployed solutions. Provide regular product feedback to the Crisis24 product and development teams to ensure new market requirements are captured and implemented. Who You Will Work With Security (CSO, Operations, Cyber, Executive Protection) Business Continuity (Operations, Facilities, Business Resiliency) Travel (Travel Leadership and Management) Information Security (CISO, IT Operations) What You Will Bring BA/BS degree in in a business or technical related field. Minimum of 5 years of experience in a technical sales or solutions engineering role. Experience creating solutions for and demonstrating SaaS technology solutions. Excellent communication and presentation skills, both written and verbal. Ability to build strong relationships with customers and internal stakeholders. Problem-solving skills and a passion for finding innovative solutions. Experience with the security industry is a plus. Passionate about Crisis24's business, industry; eager to master product and service knowledge. Experience with CRM software (e.g. Salesforce), MS Office, MS Teams, SharePoint, JIRA, and Help Desk Support Software Periodic travel up to 25% may be required. Flexibility in work hours required to support global sales initiatives. Fluency in German and / or French a strong advantage. Information Security Protect the data and systems of Crisis24 and its stakeholders by adhering to policies, reporting incidents and potential problems, completing regular training, and identifying opportunities for improvement. Crisis24, A GardaWorld Company is dedicated to equal opportunity in employment. We are committed to a work environment that celebrates diversity. We do not discriminate against any individual based on race, color, sex, national origin, age, religion, marital or parental status, sexual orientation, gender identity, gender expression, military or veteran status, disability, or any factors protected by applicable laws. Crisis24 Ltd, Avalon, 26-32 Oxford Road, Bournemouth, Bournemouth, United Kingdom Crisis24 Ltd, Two, London Bridge, London, London, City of, United Kingdom
Group CISO Are you a high calibre Security professional seeking your next opportunity? If so, InX have been retained by a leading Financial Services business to identify a Group CISO to join the CIO's SMT. The Role Reporting directly to the board CIO, the Chief Information Security Officer (CISO) will be responsible for overseeing and implementing the company's information security strategy to protect systems, networks, and data assets. You will collaborate with cross-functional teams to identify and mitigate cybersecurity risks, develop policies and procedures, and ensure compliance with regulatory requirements. Additionally, you will lead incident response efforts, conduct security awareness training, and stay abreast of emerging threats and technologies to continuously enhance the security posture. It is important to note that this role is highly strategic as well as technical, we are seeking an individual who can articulate a vision and roadmap and build capability to deliver against this. Being able to communicate with both the business and technology is extremely important. Key Responsibilities Develop and implement an information security strategy aligned with business objectives Lead the design and implementation of security policies, standards, and procedures Conduct risk assessments and develop mitigation plans to address cybersecurity threats Manage security operations, including monitoring, detection, and incident response Collaborate with IT and other departments to ensure security controls are effectively integrated into systems and processes Provide leadership and guidance to security team members and foster a culture of security awareness throughout the organization Stay current on industry trends, best practices, and regulatory requirements to inform security strategy and decision-making Skills and Experience Proven experience (10+ years) in a Security leadership role within a highly regulated Industry, ideally Payments / Financial Services External accreditation activities (implementing ISO etc.). Deep understanding of cybersecurity principles, technologies, and best practices alongside hands-on examples of implementation Strong communication and interpersonal skills, with the ability to effectively engage and influence stakeholders at all levels Demonstrated ability to lead and mentor a team of security professionals and build capability across multiple regions and a leadership style to suit different cultures. Must be collaborative, a good influencer, customer-obsessed, credible, commercially aware, a great decision maker and have strong EQ. Within this search we are seeking established CISO's as well as candidates who are looking to make a move upwards into this level of position. Please apply through this advert if you would like to be considered.
May 08, 2024
Full time
Group CISO Are you a high calibre Security professional seeking your next opportunity? If so, InX have been retained by a leading Financial Services business to identify a Group CISO to join the CIO's SMT. The Role Reporting directly to the board CIO, the Chief Information Security Officer (CISO) will be responsible for overseeing and implementing the company's information security strategy to protect systems, networks, and data assets. You will collaborate with cross-functional teams to identify and mitigate cybersecurity risks, develop policies and procedures, and ensure compliance with regulatory requirements. Additionally, you will lead incident response efforts, conduct security awareness training, and stay abreast of emerging threats and technologies to continuously enhance the security posture. It is important to note that this role is highly strategic as well as technical, we are seeking an individual who can articulate a vision and roadmap and build capability to deliver against this. Being able to communicate with both the business and technology is extremely important. Key Responsibilities Develop and implement an information security strategy aligned with business objectives Lead the design and implementation of security policies, standards, and procedures Conduct risk assessments and develop mitigation plans to address cybersecurity threats Manage security operations, including monitoring, detection, and incident response Collaborate with IT and other departments to ensure security controls are effectively integrated into systems and processes Provide leadership and guidance to security team members and foster a culture of security awareness throughout the organization Stay current on industry trends, best practices, and regulatory requirements to inform security strategy and decision-making Skills and Experience Proven experience (10+ years) in a Security leadership role within a highly regulated Industry, ideally Payments / Financial Services External accreditation activities (implementing ISO etc.). Deep understanding of cybersecurity principles, technologies, and best practices alongside hands-on examples of implementation Strong communication and interpersonal skills, with the ability to effectively engage and influence stakeholders at all levels Demonstrated ability to lead and mentor a team of security professionals and build capability across multiple regions and a leadership style to suit different cultures. Must be collaborative, a good influencer, customer-obsessed, credible, commercially aware, a great decision maker and have strong EQ. Within this search we are seeking established CISO's as well as candidates who are looking to make a move upwards into this level of position. Please apply through this advert if you would like to be considered.
VP - Information Security London - Hybrid Salary: £110,000-120,000 Gresham Hunt are currently partnered with a leading international bank who are seeking a well-rounded Cyber professional, to work alongside the CISO as a senior member of the team and trusted advisor on a range of cyber challenges and issues. The successful candidate will have: Strong Security governance, risk and compliance (GRC) with knowledge of information security standards such as Cyber Essentials, ISO 27001, NIST. Experience developing and implementing operational policies and standards. Demonstrable experience in a variety of areas such as cloud security, IAM, 3rd party risk, threat assessments and vulnerability management. Strong knowledge of cyber security architecture. Relevant certifications would be beneficial (e.g. TOGAF, SABSA). Ability to interact with and challenge technical teams and the methodologies they are implementing. Experience working with the Financial Services industry. Strong interpersonal skills and experience of developing strong relationships and significant influencing abilities, within a large corporate environment. Relevant cyber qualifications, e.g. CISSP, CISM, CRISC. For more information, please forward your CV to:
May 08, 2024
Full time
VP - Information Security London - Hybrid Salary: £110,000-120,000 Gresham Hunt are currently partnered with a leading international bank who are seeking a well-rounded Cyber professional, to work alongside the CISO as a senior member of the team and trusted advisor on a range of cyber challenges and issues. The successful candidate will have: Strong Security governance, risk and compliance (GRC) with knowledge of information security standards such as Cyber Essentials, ISO 27001, NIST. Experience developing and implementing operational policies and standards. Demonstrable experience in a variety of areas such as cloud security, IAM, 3rd party risk, threat assessments and vulnerability management. Strong knowledge of cyber security architecture. Relevant certifications would be beneficial (e.g. TOGAF, SABSA). Ability to interact with and challenge technical teams and the methodologies they are implementing. Experience working with the Financial Services industry. Strong interpersonal skills and experience of developing strong relationships and significant influencing abilities, within a large corporate environment. Relevant cyber qualifications, e.g. CISSP, CISM, CRISC. For more information, please forward your CV to:
Head of Security Engineering (Hedge Fund) Reference: HOSE - 04 - 17 Sector: Town/City: London Contract Type: Permanent Leading the development of the Security Engineering department and helping set the long term strategy for the organisations capability in this area. As part of the Information Security leadership team you will have the opportunity to shape the direction of the team and take responsibility supporting the CISO in developing the long term strategy. Position Overview: As the Head of Security Engineering, you will be responsible for leading our security engineering team and driving the development and implementation of robust security solutions to protect our systems, networks, and data. This is a key leadership role that requires strategic vision, technical expertise, and strong collaboration skills. Key Responsibilities: Develop and execute a strategic security roadmap aligned with the organization's goals and objectives. Lead and mentor a team of security engineers and analysts, fostering a culture of excellence and innovation. Design and implement security architecture and solutions to protect against cyber threats and vulnerabilities. Ensure compliance with relevant security standards, regulations, and best practices. Collaborate with cross-functional teams to integrate security into all aspects of the organization's operations. Manage relationships with security vendors and service providers, evaluating and selecting appropriate security solutions and technologies. Assess security risks and develop risk mitigation strategies to protect the organization's assets. Promote security awareness and education throughout the organization, ensuring employees understand their role in maintaining a secure environment. Continuously evaluate and improve security processes, technologies, and practices to adapt to evolving threats and business needs.
May 08, 2024
Full time
Head of Security Engineering (Hedge Fund) Reference: HOSE - 04 - 17 Sector: Town/City: London Contract Type: Permanent Leading the development of the Security Engineering department and helping set the long term strategy for the organisations capability in this area. As part of the Information Security leadership team you will have the opportunity to shape the direction of the team and take responsibility supporting the CISO in developing the long term strategy. Position Overview: As the Head of Security Engineering, you will be responsible for leading our security engineering team and driving the development and implementation of robust security solutions to protect our systems, networks, and data. This is a key leadership role that requires strategic vision, technical expertise, and strong collaboration skills. Key Responsibilities: Develop and execute a strategic security roadmap aligned with the organization's goals and objectives. Lead and mentor a team of security engineers and analysts, fostering a culture of excellence and innovation. Design and implement security architecture and solutions to protect against cyber threats and vulnerabilities. Ensure compliance with relevant security standards, regulations, and best practices. Collaborate with cross-functional teams to integrate security into all aspects of the organization's operations. Manage relationships with security vendors and service providers, evaluating and selecting appropriate security solutions and technologies. Assess security risks and develop risk mitigation strategies to protect the organization's assets. Promote security awareness and education throughout the organization, ensuring employees understand their role in maintaining a secure environment. Continuously evaluate and improve security processes, technologies, and practices to adapt to evolving threats and business needs.
Job title: Lead Cyber Risk Analyst Location: Various - We offer a range of flexible working arrangements - please speak to your recruiter about the options for this role. Salary: £60,000+ Depending on experience What you'll be doing: Lead on developing the risk management data strategy; identifying potential data sources and approaches to connecting and exploiting the data to support risk analysis Conduct impact modelling to assess potential financial, operational, and reputational impacts to the company in the event of a major cyber incident Develop and present strategic risk reports to senior management, providing clear insights and recommendations Collaborate across the Group to lead risk analysis efforts and provide subject matter expertise (SME) guidance to different sectors Work closely with other cybersecurity teams to understand threat landscapes, vulnerabilities, and impact assessments Stay abreast of the latest cybersecurity trends, threats, and risk quantification techniques Contribute to the continuous improvement of the cybersecurity risk management framework Act as a delegate for the Head of Cyber Security Risk in various capacities as needed Your skills and experiences: Essential: Robust understanding of risk analysis methodologies, frameworks and theories (FAIR, NIST) Previous experience working in large and complex organisations Ability to effectively write high quality reports and presentations Advanced user with Microsoft Excel Bachelor's degree level qualification or above in risk management, mathematics, cyber security or another STEM subject Desirable: Previous experience working in corporate risk management or security consultancy roles Experience working with defence or national security organisations CISSP, CRISC, CISM or other advanced cyber security certification Benefits: You'll receive benefits including a competitive pension scheme, enhanced annual leave allowance and a Company contributed Share Incentive Plan. You'll also have access to additional benefits such as flexible working, an employee assistance programme, Cycle2work and employee discounts - you may also be eligible for an annual incentive. The CISO Team: Working for one of the largest defence companies in the world, this exciting company within the CISO's team, reporting to the Head of Cyber Security Risk within the risk Cyber function is now available. The Lead Cyber Risk Analyst will be pivotal in enhancing our cybersecurity posture through both quantitative and qualitative risk analysis. The position will allow you to build on your technical career working alongside various stakeholders and partners across BAE Systems and the wider Defence industry. Why BAE Systems? This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome candidates from all backgrounds and particularly from sections of the community who are currently underrepresented within our industry, including women, ethnic minorities, people with disabilities and LGBTQ+ individuals. We also want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments." Please be aware that many roles working for BAE Systems will be subject to both security and export control restrictions. These restrictions mean that factors including your nationality, any previous nationalities you have held, and your place of birth may limit those roles you can perform for the organisation. We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible. Closing Date: 16th May 2024
May 08, 2024
Full time
Job title: Lead Cyber Risk Analyst Location: Various - We offer a range of flexible working arrangements - please speak to your recruiter about the options for this role. Salary: £60,000+ Depending on experience What you'll be doing: Lead on developing the risk management data strategy; identifying potential data sources and approaches to connecting and exploiting the data to support risk analysis Conduct impact modelling to assess potential financial, operational, and reputational impacts to the company in the event of a major cyber incident Develop and present strategic risk reports to senior management, providing clear insights and recommendations Collaborate across the Group to lead risk analysis efforts and provide subject matter expertise (SME) guidance to different sectors Work closely with other cybersecurity teams to understand threat landscapes, vulnerabilities, and impact assessments Stay abreast of the latest cybersecurity trends, threats, and risk quantification techniques Contribute to the continuous improvement of the cybersecurity risk management framework Act as a delegate for the Head of Cyber Security Risk in various capacities as needed Your skills and experiences: Essential: Robust understanding of risk analysis methodologies, frameworks and theories (FAIR, NIST) Previous experience working in large and complex organisations Ability to effectively write high quality reports and presentations Advanced user with Microsoft Excel Bachelor's degree level qualification or above in risk management, mathematics, cyber security or another STEM subject Desirable: Previous experience working in corporate risk management or security consultancy roles Experience working with defence or national security organisations CISSP, CRISC, CISM or other advanced cyber security certification Benefits: You'll receive benefits including a competitive pension scheme, enhanced annual leave allowance and a Company contributed Share Incentive Plan. You'll also have access to additional benefits such as flexible working, an employee assistance programme, Cycle2work and employee discounts - you may also be eligible for an annual incentive. The CISO Team: Working for one of the largest defence companies in the world, this exciting company within the CISO's team, reporting to the Head of Cyber Security Risk within the risk Cyber function is now available. The Lead Cyber Risk Analyst will be pivotal in enhancing our cybersecurity posture through both quantitative and qualitative risk analysis. The position will allow you to build on your technical career working alongside various stakeholders and partners across BAE Systems and the wider Defence industry. Why BAE Systems? This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome candidates from all backgrounds and particularly from sections of the community who are currently underrepresented within our industry, including women, ethnic minorities, people with disabilities and LGBTQ+ individuals. We also want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments." Please be aware that many roles working for BAE Systems will be subject to both security and export control restrictions. These restrictions mean that factors including your nationality, any previous nationalities you have held, and your place of birth may limit those roles you can perform for the organisation. We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible. Closing Date: 16th May 2024
Pearson Whiffin Recruitment Limited
Maidstone, Kent
IT Risk and Compliance Manager We are looking for an experienced risk and compliance specialist to work alongside the CISO to lead the overall management of IT compliance and audit, continuity plans/documents and to ensure systems are in line with regulations and guidelines. There will be a big focus on Auditing and Assessment, Risk Management so will need to possess a strong understanding of stand click apply for full job details
Feb 01, 2024
Full time
IT Risk and Compliance Manager We are looking for an experienced risk and compliance specialist to work alongside the CISO to lead the overall management of IT compliance and audit, continuity plans/documents and to ensure systems are in line with regulations and guidelines. There will be a big focus on Auditing and Assessment, Risk Management so will need to possess a strong understanding of stand click apply for full job details
Head of Cyber Resilience - Director. Harrington Starr are proud to have partnered with a global banking organisation as they seek a new Head of Cyber Resilience to join their senior leadership team. This role reports directly into the EMEA CISO and provides the interface between the Cyber Security team and Operational Resilience function, in addition to managing the security operation center. Responsibilities: Completely define and coordinate delivery of the banks Cyber Resilience strategy to help ensure the EMEA region can fully withstand cyber-attacks. Direct the cyber element of the Bank's Respond and Recovery program within the Operation Resilience framework. Ensure delivery of security services though liaising and managing third parties, group companies and commercial suppliers. Daily interaction with senior stakeholders globally while leading a team of 3-4 direct reports. Requirements: Extensive experience of delivering Cyber Resilience and managing an Insider Risk program at a senior level in a regulated corporate environment (preferable Financial Services). Knowledge of risk management frameworks such as NIST and ISO 27001, BoE Operational Resilience and EU DORA regulations. Excellent stakeholder management experience, communication (written and verbal) and a meticulous eye for detail. This is an excellent opportunity to take responsibility for developing and ensuring delivery of the Cyber Resilience strategy for a well-established Bank. If this sounds like it could be a good fit, apply today or get in contact with
Jan 30, 2024
Full time
Head of Cyber Resilience - Director. Harrington Starr are proud to have partnered with a global banking organisation as they seek a new Head of Cyber Resilience to join their senior leadership team. This role reports directly into the EMEA CISO and provides the interface between the Cyber Security team and Operational Resilience function, in addition to managing the security operation center. Responsibilities: Completely define and coordinate delivery of the banks Cyber Resilience strategy to help ensure the EMEA region can fully withstand cyber-attacks. Direct the cyber element of the Bank's Respond and Recovery program within the Operation Resilience framework. Ensure delivery of security services though liaising and managing third parties, group companies and commercial suppliers. Daily interaction with senior stakeholders globally while leading a team of 3-4 direct reports. Requirements: Extensive experience of delivering Cyber Resilience and managing an Insider Risk program at a senior level in a regulated corporate environment (preferable Financial Services). Knowledge of risk management frameworks such as NIST and ISO 27001, BoE Operational Resilience and EU DORA regulations. Excellent stakeholder management experience, communication (written and verbal) and a meticulous eye for detail. This is an excellent opportunity to take responsibility for developing and ensuring delivery of the Cyber Resilience strategy for a well-established Bank. If this sounds like it could be a good fit, apply today or get in contact with