JOB DESCRIPTION Job Title Resilience Advisor (Business Continuity) Department Environment and Neighbourhoods (E&N Hub) Section or Service Resilience " Grade G DESIGNATION: Responsible to: Resilience Manager Employees directly supervised (if applicable): None 1. JOB PURPOSE: Lead Practitioner for Business Continuity: Support the Executive Management Team (EMT) and Council Directors with business continuity planning. Collaborate across all departments including during incidents and disruptions, ensuring alignment with national and regional guidelines, standards, andולים best practices. Manage Implementation: Awareness and advise as appropriate on the Business Continuity Plans and Procedures across all Directorates in the Council, as well as Disaster Recovery operations bonne federated the Council. Minimise Impact: Take necessary actions to minimise and control the impact of major business disruptions on the Council.Communicate and Coordinate: Maintain the Council's Business Continuity policy, plan, risk register, and impact analysis. Coordinate the Council's business continuity planning programme in line with ISO22301 standards and provide advice to local businesses and voluntary organisations as per the Civil Contingencies Act 2004. Emergency Response: To act as the 24/7 on-call Resilienceaule Res സ്വക ര്യ as part of an emergency rota and 'Tactical Local Authority Liaison Officer (LALO) when coordinating the Council's response from the incident scene in major and serious incidents in the Borough. 2. DESCRIPTION OF DUTIES: Achieve compliance with ISO 22301 and the Civil Contingencies Act 2004 by communicating and coordinating comprehensive business continuity plans at all levels. Ensure the continual effectiveness and compliance of all business continuity plans for unmittelbar service areas, business functions, and IT applications, guaranteeing their effectiveness. Maintain uninterrupted service delivery during disruptive incidents by coordinating necessary activities and ensuring the Council's operational resilience. Provide advice on ways to enhance business continuity plans through collaboration with corporate, departmental, and service levels, mitigating disruption effects to ensure essential services for residents. Drive continuous improvement by conducting periodic reviews and tests of business continuity plans and procedures, reporting findings to management, and recommending enhancements. Provide the Executive Management Team (EMT) with analysis through annual reviews of the Corporate Business Continuity Strategy and periodic dashboard updates on business continuity activities across the Council. Ensure the Council's Corporate Business Continuity Plan and Corporate Statement of Risk Appetite are up-to-date and integrated within the overall suite of contingency planning documents. Optimise organisational resilience by being a lead user of the Business Impact Analysis (Bпри system, ensuring its effective use across departments and services, and исследования other corporate services. Strengthen the alignment between business continuity and corporate risk management by liaising closely with the Council's Strategic Risk function. Support all council departments and services in producing, regularly reviewing, testing, and recommending amendments to Service Area Business Continuity Plans, ensuring their effectiveness and consistency with corporate resilience arrangements. Make recommendations for enhancements to business continuity plans and procedures across the Council through an annual training and exercise programme, involving external partners where appropriate. Empower departmental and service area staff_nbue by designing and delivering training sessions and exercises as part of the business continuity training and exercise programme. Maintain up-to-date service area plans by managing the administration of the Council business continuity system, the Riskonnect System. Contribute to the corporate risk register by linking corporate and departmental/service risks to business continuity plans where appropriate. Ensure readiness for significant and major incidents by participating in the Resilience team rota, providing in-person coordination and support during emergencies. Act as Tactical LALO during major emergencies, coordinating and leading on the Council's response and supporting efforts at the incident scene, engaging with the emergency services to make decisions on the Council's behalf. Foster a collaborative and supportive environment by working with and supporting other staff members in the Resilience Team in emergency preparedness and incident response situations. Maintain accurate records, prepare agendas, and take minutes of relevant Resilience and emergency meetings. Attend various meetings to represent the Council or the team on emergency preparedness, response, and business continuity, and coordinate with internal departments and external organisations. Undertake additional duties as required, commensurate with your grade, to support the Council's resilience and business continuity efforts. SELECTION CRITERIA/PERSON SPECIFICATION Job Title: Resilience Advisor (Business Continuity) Conditions to Note: Candidates: When completing your application form, please address your answers directly to each of the selection criteria below. This will allow the panel to assess your ability to meet each criterion. It is essential that you give at least one example of your ability to meet each of the four Values and Behaviours: Putting Communities First, Respect, Integrity and Working Together. Recruiting Managers: The following values and behaviours are essential criteria for every post and must be addressed directly by candidates. The Guidance Notes on values and behaviours for managers give example questions for the interview and application stages INTERNET recruitment process. Values & Behaviours The Royal Borough of Kensington and Chelsea has identified four key behaviours and values that should be demonstrated by all council employees. Successful candidates will show the ability to meet these behaviours. Candidates applying for managerial/leadership roles should also demonstrate two additional leadership behaviours. A Equal Opportunities Demonstrate an understanding of and commitment to Council labo policies in relation to Equal Opportunity, Customer Care and service delivery, and the ability to implement these policies in the workplace. B Qualifications: Essential: Qualifications gained in Business Continuity Planning and/or training, or Certified Member of the Business Continuity Institute. Support to be fully qualified can be offered (subject to performance) by RBKC. C Skills; Experience and Attitude Essential: Knowledge of the contingency planning legislative requirements for local authorities brought about by the Civil Contingencies Act 2004 and an international standard for Business Continuity Management Systems (BCMS) ISO 22301. Experience of developing business continuity contingency plans and procedures. Experience of developing, planning, and delivering training and exercises on business406 Continuity to a wide range of people, at all levels and externally to businesses and voluntary organisations. Ability to assimilate, evaluate and collate information on business continuity planning priorities and resources. Presenting recommendations in clear and concise reports to all levels of stakeholders. Ability to communicate effectively with colleagues, Councillors, residents and the general public, and coordinate work efficiently and effectively with service areas in numerous locations. Strong administrative and project management skills, with effectiveness in developing and managing tasks to achieve target dates. Ability to use IT equipment and packages (e.g. Microsoft Office and Outlook, Geographic Information System (GIS . Ability to be responsive and be a leader in emergency response. Ability to remain calm under pressure when dealing with emergencies. Self motivated and able to work on your own initiative with minimal supervision. Ability to work in and develop teams and partnerships in business continuity. Able to work outside normal office hours on occasions for training, meetings, when responding to emergencies as part of an emergency rota. Strong organisational and interpersonal skills with ability to react to changing priorities in calm and efficient manner. Strong analytical, organisational, decision making and problem solving skills. Understand the critical importance of equality, diversity, and inclusion in planning and responding to emergencies. Our Values & Behaviours D PUTTING COMMUNITIES FIRST We put local people at the heart of decision making in everything we do. We seek to include and involve: all voices matter. We provide quality services that are responsive, effective and efficient. The following examples are indicators of effective behaviour: I actively involve and include the communities that I serve in my work. I shall express the views of the communities in my daily work. I shall improve the service I provide through seeking feedback from others. Our residents will feel that: I have been included. I can see how my views have been taken into account. I can see improvements and developments based on my input. . click apply for full job details
Mar 09, 2026
Full time
JOB DESCRIPTION Job Title Resilience Advisor (Business Continuity) Department Environment and Neighbourhoods (E&N Hub) Section or Service Resilience " Grade G DESIGNATION: Responsible to: Resilience Manager Employees directly supervised (if applicable): None 1. JOB PURPOSE: Lead Practitioner for Business Continuity: Support the Executive Management Team (EMT) and Council Directors with business continuity planning. Collaborate across all departments including during incidents and disruptions, ensuring alignment with national and regional guidelines, standards, andולים best practices. Manage Implementation: Awareness and advise as appropriate on the Business Continuity Plans and Procedures across all Directorates in the Council, as well as Disaster Recovery operations bonne federated the Council. Minimise Impact: Take necessary actions to minimise and control the impact of major business disruptions on the Council.Communicate and Coordinate: Maintain the Council's Business Continuity policy, plan, risk register, and impact analysis. Coordinate the Council's business continuity planning programme in line with ISO22301 standards and provide advice to local businesses and voluntary organisations as per the Civil Contingencies Act 2004. Emergency Response: To act as the 24/7 on-call Resilienceaule Res സ്വക ര്യ as part of an emergency rota and 'Tactical Local Authority Liaison Officer (LALO) when coordinating the Council's response from the incident scene in major and serious incidents in the Borough. 2. DESCRIPTION OF DUTIES: Achieve compliance with ISO 22301 and the Civil Contingencies Act 2004 by communicating and coordinating comprehensive business continuity plans at all levels. Ensure the continual effectiveness and compliance of all business continuity plans for unmittelbar service areas, business functions, and IT applications, guaranteeing their effectiveness. Maintain uninterrupted service delivery during disruptive incidents by coordinating necessary activities and ensuring the Council's operational resilience. Provide advice on ways to enhance business continuity plans through collaboration with corporate, departmental, and service levels, mitigating disruption effects to ensure essential services for residents. Drive continuous improvement by conducting periodic reviews and tests of business continuity plans and procedures, reporting findings to management, and recommending enhancements. Provide the Executive Management Team (EMT) with analysis through annual reviews of the Corporate Business Continuity Strategy and periodic dashboard updates on business continuity activities across the Council. Ensure the Council's Corporate Business Continuity Plan and Corporate Statement of Risk Appetite are up-to-date and integrated within the overall suite of contingency planning documents. Optimise organisational resilience by being a lead user of the Business Impact Analysis (Bпри system, ensuring its effective use across departments and services, and исследования other corporate services. Strengthen the alignment between business continuity and corporate risk management by liaising closely with the Council's Strategic Risk function. Support all council departments and services in producing, regularly reviewing, testing, and recommending amendments to Service Area Business Continuity Plans, ensuring their effectiveness and consistency with corporate resilience arrangements. Make recommendations for enhancements to business continuity plans and procedures across the Council through an annual training and exercise programme, involving external partners where appropriate. Empower departmental and service area staff_nbue by designing and delivering training sessions and exercises as part of the business continuity training and exercise programme. Maintain up-to-date service area plans by managing the administration of the Council business continuity system, the Riskonnect System. Contribute to the corporate risk register by linking corporate and departmental/service risks to business continuity plans where appropriate. Ensure readiness for significant and major incidents by participating in the Resilience team rota, providing in-person coordination and support during emergencies. Act as Tactical LALO during major emergencies, coordinating and leading on the Council's response and supporting efforts at the incident scene, engaging with the emergency services to make decisions on the Council's behalf. Foster a collaborative and supportive environment by working with and supporting other staff members in the Resilience Team in emergency preparedness and incident response situations. Maintain accurate records, prepare agendas, and take minutes of relevant Resilience and emergency meetings. Attend various meetings to represent the Council or the team on emergency preparedness, response, and business continuity, and coordinate with internal departments and external organisations. Undertake additional duties as required, commensurate with your grade, to support the Council's resilience and business continuity efforts. SELECTION CRITERIA/PERSON SPECIFICATION Job Title: Resilience Advisor (Business Continuity) Conditions to Note: Candidates: When completing your application form, please address your answers directly to each of the selection criteria below. This will allow the panel to assess your ability to meet each criterion. It is essential that you give at least one example of your ability to meet each of the four Values and Behaviours: Putting Communities First, Respect, Integrity and Working Together. Recruiting Managers: The following values and behaviours are essential criteria for every post and must be addressed directly by candidates. The Guidance Notes on values and behaviours for managers give example questions for the interview and application stages INTERNET recruitment process. Values & Behaviours The Royal Borough of Kensington and Chelsea has identified four key behaviours and values that should be demonstrated by all council employees. Successful candidates will show the ability to meet these behaviours. Candidates applying for managerial/leadership roles should also demonstrate two additional leadership behaviours. A Equal Opportunities Demonstrate an understanding of and commitment to Council labo policies in relation to Equal Opportunity, Customer Care and service delivery, and the ability to implement these policies in the workplace. B Qualifications: Essential: Qualifications gained in Business Continuity Planning and/or training, or Certified Member of the Business Continuity Institute. Support to be fully qualified can be offered (subject to performance) by RBKC. C Skills; Experience and Attitude Essential: Knowledge of the contingency planning legislative requirements for local authorities brought about by the Civil Contingencies Act 2004 and an international standard for Business Continuity Management Systems (BCMS) ISO 22301. Experience of developing business continuity contingency plans and procedures. Experience of developing, planning, and delivering training and exercises on business406 Continuity to a wide range of people, at all levels and externally to businesses and voluntary organisations. Ability to assimilate, evaluate and collate information on business continuity planning priorities and resources. Presenting recommendations in clear and concise reports to all levels of stakeholders. Ability to communicate effectively with colleagues, Councillors, residents and the general public, and coordinate work efficiently and effectively with service areas in numerous locations. Strong administrative and project management skills, with effectiveness in developing and managing tasks to achieve target dates. Ability to use IT equipment and packages (e.g. Microsoft Office and Outlook, Geographic Information System (GIS . Ability to be responsive and be a leader in emergency response. Ability to remain calm under pressure when dealing with emergencies. Self motivated and able to work on your own initiative with minimal supervision. Ability to work in and develop teams and partnerships in business continuity. Able to work outside normal office hours on occasions for training, meetings, when responding to emergencies as part of an emergency rota. Strong organisational and interpersonal skills with ability to react to changing priorities in calm and efficient manner. Strong analytical, organisational, decision making and problem solving skills. Understand the critical importance of equality, diversity, and inclusion in planning and responding to emergencies. Our Values & Behaviours D PUTTING COMMUNITIES FIRST We put local people at the heart of decision making in everything we do. We seek to include and involve: all voices matter. We provide quality services that are responsive, effective and efficient. The following examples are indicators of effective behaviour: I actively involve and include the communities that I serve in my work. I shall express the views of the communities in my daily work. I shall improve the service I provide through seeking feedback from others. Our residents will feel that: I have been included. I can see how my views have been taken into account. I can see improvements and developments based on my input. . click apply for full job details
Head of Application Operations Department: Engineering Employment Type: Full Time Location: London Reporting To: VP Platform Engineering & Technical Operations Compensation: £115,000 - £120,000 / year Description Reward Gateway and Edenred are global leaders in employee benefits and engagement, helping organisations attract, engage and retain talent through a unified employee experience platform. Guided by the missions "Making the World a Better Place to Work" and "Enriching connections, for good", we focus on improving employee engagement and building resilient workplaces that enhance people's daily lives. As Director of Application Operations, you will partner with the VP PETO to shape and deliver the support and operability vision, ensuring our applications and platforms are well operated, and the experience of our users globally has the correct priority, whilst enabling our Engineering teams to innovate. You will lead a key domain within the PETO organisation, driving high quality and timely technical support operations while embedding modern engineering practices and striving for continual improvement. Your domain will be a key enabler in delivering great service to our customers and to our Engineering teams, and you will drive this through effective KPIs and metrics. You will liaise closely with your peers across the PETO organisation, including Data, Platform & Infrastructure to drive a coherent strategy. You will align priorities with business goals to deliver reliable, high quality experiences for our customers, merchants and their employees. Key Responsibilities Lead the Application Operations strategy with PETO leadership, redesigning ITIL processes, ticket flows and the operating model to build a best in class function. Re engineer Jira Service Management workflows, queues, automations, and implement a unified Service Catalogue mapping services to owners, SLAs/SLOs, request types, runbooks and escalation paths. Establish strong intake and triage controls, with clear priority/severity definitions, escalation criteria and evidence standards to increase L2 first time resolution and protect L3 capacity. Own end to end incident management, embedding industry standard major incident practices, command roles, stakeholder communications, status pages and high quality post incident reviews. Build and run the Problem Management function, driving RCA and preventative actions that reduce recurrence and improve system resilience. Shift Technical Operations toward proactive protections (SLOs, error budgets, early warning signals, auto remediation, runbook automation) while maintaining excellent reactive response. Define the PETO TechOps model, standardising incident, problem and change processes and integrating change enablement with JSM/Service Catalogue guardrails to reduce change failure rate. Build and maintain a knowledge base and operability standards-runbooks, playbooks, ownership models, on call readiness-to support shift left and consistent operational quality. Define and manage data driven KPIs (MTTR, MTTD, recurrence, L2 resolution %, SLO/SLA compliance, CSAT), using insights to drive prioritisation and improvement. Develop the team from L2 to L2.5 capability through automation, safe configuration changes, feature flag operations and scripted runbooks to reduce escalations. Lead and grow senior operations engineers, establishing career pathways, succession planning and a culture of excellence and accountability. Partner with executives and cross functional teams to align Technical Operations impact with product and customer value, balancing technical debt and business priorities. Skills, Knowledge and Experience Expert ITIL practitioner with experience designing and maturing Incident, Problem and Change Management in agile, product led environments. Deep Jira Service Management expertise (workflows, queues, automations, SLAs), plus strong Service Catalogue and Confluence knowledge management capability. Skilled in building triage and escalation models that maximise L2 resolution, protect L3 focus and ensure high quality, reproducible handoffs. Experienced major incident lead, proficient in incident command, stakeholder communications, status page practices and driving effective RCAs. Strong Problem Management and RCA facilitation with a track record of implementing preventative actions that reduce operational risk. Proficient with observability and ITSM tooling to enable proactive monitoring, SLO/SLA definition and data driven operational dashboards. Strong people leadership with experience organising teams for fast execution, accountability and healthy on call practices. Clear, concise communicator able to translate complex technical issues for all stakeholder levels. Strong background in integrating ITIL practices into modern Agile, product centric ways of working. Solid commercial and product understanding with the ability to balance operational readiness, technical debt and delivery priorities. Experience advancing support teams toward L2.5 capabilities through automation, runbooks and safe operational guardrails. Familiarity with cloud native and API first architectures, partner integrations and ecosystem level monitoring. Experience establishing OKRs and operational performance metrics (including DORA) to drive continuous improvement. The interview process Online interview with the Talent Acquisition Partner Interview with the VP Platform Engineering & Technical Operations & VP Engineering At Reward Gateway Edenred we are committed to ensuring an inclusive and accessible recruitment process for all candidates. If you have any specific requirements or need reasonable adjustments at any stage of the recruitment journey, please let your Talent Acquisition Partner know. Your needs are important to us, and we want to ensure an equitable experience for every candidate. Be comfortable. Be you. At Reward Gateway, we want all our employees to feel comfortable bringing their passion, creativity and individuality to work. We value all cultures, backgrounds, and experiences, as we truly believe that diversity drives innovation. Express yourself, join our community and help us Make the World a Better Place to Work.
Feb 15, 2026
Full time
Head of Application Operations Department: Engineering Employment Type: Full Time Location: London Reporting To: VP Platform Engineering & Technical Operations Compensation: £115,000 - £120,000 / year Description Reward Gateway and Edenred are global leaders in employee benefits and engagement, helping organisations attract, engage and retain talent through a unified employee experience platform. Guided by the missions "Making the World a Better Place to Work" and "Enriching connections, for good", we focus on improving employee engagement and building resilient workplaces that enhance people's daily lives. As Director of Application Operations, you will partner with the VP PETO to shape and deliver the support and operability vision, ensuring our applications and platforms are well operated, and the experience of our users globally has the correct priority, whilst enabling our Engineering teams to innovate. You will lead a key domain within the PETO organisation, driving high quality and timely technical support operations while embedding modern engineering practices and striving for continual improvement. Your domain will be a key enabler in delivering great service to our customers and to our Engineering teams, and you will drive this through effective KPIs and metrics. You will liaise closely with your peers across the PETO organisation, including Data, Platform & Infrastructure to drive a coherent strategy. You will align priorities with business goals to deliver reliable, high quality experiences for our customers, merchants and their employees. Key Responsibilities Lead the Application Operations strategy with PETO leadership, redesigning ITIL processes, ticket flows and the operating model to build a best in class function. Re engineer Jira Service Management workflows, queues, automations, and implement a unified Service Catalogue mapping services to owners, SLAs/SLOs, request types, runbooks and escalation paths. Establish strong intake and triage controls, with clear priority/severity definitions, escalation criteria and evidence standards to increase L2 first time resolution and protect L3 capacity. Own end to end incident management, embedding industry standard major incident practices, command roles, stakeholder communications, status pages and high quality post incident reviews. Build and run the Problem Management function, driving RCA and preventative actions that reduce recurrence and improve system resilience. Shift Technical Operations toward proactive protections (SLOs, error budgets, early warning signals, auto remediation, runbook automation) while maintaining excellent reactive response. Define the PETO TechOps model, standardising incident, problem and change processes and integrating change enablement with JSM/Service Catalogue guardrails to reduce change failure rate. Build and maintain a knowledge base and operability standards-runbooks, playbooks, ownership models, on call readiness-to support shift left and consistent operational quality. Define and manage data driven KPIs (MTTR, MTTD, recurrence, L2 resolution %, SLO/SLA compliance, CSAT), using insights to drive prioritisation and improvement. Develop the team from L2 to L2.5 capability through automation, safe configuration changes, feature flag operations and scripted runbooks to reduce escalations. Lead and grow senior operations engineers, establishing career pathways, succession planning and a culture of excellence and accountability. Partner with executives and cross functional teams to align Technical Operations impact with product and customer value, balancing technical debt and business priorities. Skills, Knowledge and Experience Expert ITIL practitioner with experience designing and maturing Incident, Problem and Change Management in agile, product led environments. Deep Jira Service Management expertise (workflows, queues, automations, SLAs), plus strong Service Catalogue and Confluence knowledge management capability. Skilled in building triage and escalation models that maximise L2 resolution, protect L3 focus and ensure high quality, reproducible handoffs. Experienced major incident lead, proficient in incident command, stakeholder communications, status page practices and driving effective RCAs. Strong Problem Management and RCA facilitation with a track record of implementing preventative actions that reduce operational risk. Proficient with observability and ITSM tooling to enable proactive monitoring, SLO/SLA definition and data driven operational dashboards. Strong people leadership with experience organising teams for fast execution, accountability and healthy on call practices. Clear, concise communicator able to translate complex technical issues for all stakeholder levels. Strong background in integrating ITIL practices into modern Agile, product centric ways of working. Solid commercial and product understanding with the ability to balance operational readiness, technical debt and delivery priorities. Experience advancing support teams toward L2.5 capabilities through automation, runbooks and safe operational guardrails. Familiarity with cloud native and API first architectures, partner integrations and ecosystem level monitoring. Experience establishing OKRs and operational performance metrics (including DORA) to drive continuous improvement. The interview process Online interview with the Talent Acquisition Partner Interview with the VP Platform Engineering & Technical Operations & VP Engineering At Reward Gateway Edenred we are committed to ensuring an inclusive and accessible recruitment process for all candidates. If you have any specific requirements or need reasonable adjustments at any stage of the recruitment journey, please let your Talent Acquisition Partner know. Your needs are important to us, and we want to ensure an equitable experience for every candidate. Be comfortable. Be you. At Reward Gateway, we want all our employees to feel comfortable bringing their passion, creativity and individuality to work. We value all cultures, backgrounds, and experiences, as we truly believe that diversity drives innovation. Express yourself, join our community and help us Make the World a Better Place to Work.
Director - Cybersecurity - Cyber Resilience, TC, UKI Location: London Other locations: Primary Location Only Date: 27 Jan 2026 Requisition ID: At EY, we're all in to shape your future with confidence. We'll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world. Job Title: Director - Cybersecurity - Cyber Resilience About EY: At EY, we are committed to building a better working world. Our Cybersecurity Consulting Practice is rapidly expanding, and we are investing in our capabilities to meet the increasing demand for cybersecurity solutions. Join us and be part of a global team of over 13,000 professionals dedicated to delivering cutting-edge security transformation programs and services. The Opportunity: As a Director in Cybersecurity - Cyber Resilience, you will bring diverse perspectives and deep subject matter expertise to deliver high quality insights and outcomes for our clients. You will play a strategic leadership role in shaping and overseeing complex cybersecurity resilience engagements, strengthening senior client relationships, and guiding teams to develop innovative, practical solutions that help build greater resilience into their businesses. Key Responsibilities: Lead and deliver cyber resilience transformation programmes, owning end-to-end engagement delivery (scope, quality, timeline, budget) and ensuring outcomes measurably improve preparedness, response, and recovery. Design, run, and continuously enhance cyber crisis simulations and tabletop exercises for executives and operational teams-ensuring scenarios reflect the current threat landscape, sector trends, and the client's critical business services. Act as an outstanding facilitator and "crisis conductor": guide senior leaders through high pressure decision making, inject realistic developments, challenge assumptions, and drive clear actions, owners, and lessons learned. Translate threat intelligence and emerging attacker tactics into practical resilience improvements-linking likely threats to business impact, critical dependencies, and control or capability gaps. Integrate cyber response and recovery into wider enterprise resilience plans, including business continuity, IT disaster recovery, operational resilience, third-party resilience, and enterprise risk management-ensuring cyber is embedded, not bolted on. Partner with C-suite and functional leaders (CIO, CISO, COO, Risk, Legal, Comms, HR, Ops) to strengthen organisational readiness, clarify risk appetite, and improve cross-functional coordination during incidents. Build capability roadmaps and investment cases for resilience (people/process/technology), prioritising initiatives that reduce time-to-detect, time-to-respond, and time-to-recover for critical services. Shape and grow a cyber resilience offering: originate opportunities, develop proposals, create market-facing materials, and contribute thought leadership aligned to evolving resilience and regulatory expectations. Lead, coach, and inspire a high-performing cyber resilience team-developing facilitation skills, incident leadership, scenario design expertise, and client advisory confidence. Skills and Attributes for Success: Exceptional facilitator and communicator-able to run engaging, high-impact workshops and crisis simulations, influencing senior audiences across business, technology, and risk. Deep understanding of the cyber threat landscape and attacker behaviours, with the ability to convert threat insight into relevant scenarios, decision points, and resilience improvements. Strong resilience practitioner mindset: comfortable operating in ambiguity, steering complex stakeholder groups, and driving structured outcomes under time pressure. Strategic problem solver-able to diagnose resilience gaps, design pragmatic target-state capabilities, and secure executive buy-in by linking cyber resilience to business continuity and critical service delivery. Experienced programme and engagement leader-able to structure and manage large, complex initiatives and deliver measurable resilience outcomes. Commercially astute and quality-driven-balancing pace with rigour, managing delivery risk, and protecting client and firm reputation. Collaborative leader-builds trusted relationships, develops talent through coaching and mentoring, and fosters a culture of continuous learning and accountability. Confident advisor at board/exec level-able to discuss governance, risk appetite, crisis communications, regulatory considerations, and operational resilience expectations. Strong market access and trusted relationships, leveraging established sector networks and senior level contacts to originate opportunities, shape market conversations, and strengthen the firm's position with key decision makers. To Qualify for the Role, You Must Have Proven experience leading cyber resilience, incident readiness, and/or crisis management programmes-demonstrating tangible improvements in preparedness, response effectiveness, and recovery capability. Strong track record designing and facilitating cyber crisis simulations and tabletop exercises for senior stakeholders, including scenario development, exercise delivery, and after-action reporting with actionable remediation plans. Experience building or enhancing incident response and recovery operating models: governance, roles, processes, playbooks, communications, and integration with ITDR/BCP. Demonstrable ability to embed cyber into wider business resilience frameworks (e.g., business continuity, operational resilience, third-party resilience) and align cyber capabilities to critical business services and impact tolerances. Ability to develop compelling investment cases and prioritised roadmaps for resilience capability uplift, aligned to organisational goals and risk appetite. Robust knowledge of relevant security and resilience frameworks and regulations (e.g., NIST CSF, NIS/NIS2, sector-specific resilience expectations), and practical experience translating these into implementable capabilities and controls. Strong stakeholder management experience across C-suite, technology, operations, legal, risk, and communications-ensuring coherent decision-making before, during, and after incidents. Ideally, You'll Also Have: Security-related qualifications such as CISSP, CISM, CISMP, CIISEC. Experience operating within an NCSC Assured Cyber Consultancy. Sector experience in one or more of the following: Government & Public Sector, Energy & Utilities, Retail and Consumer Products, Life Sciences, Telecoms, Media and Technology, or Transport. Professional services experience with market-leading organisations in delivering cybersecurity solutions. Join Us: At EY, you'll have the chance to build a meaningful and fulfilling career, supported by an inclusive culture and cutting-edge technology. Together, we can create a better working world for all. What we look for We're interested in people with integrity who can collaborate with people from a diverse range of backgrounds and crucially a growth mindset. What we offer We offer a competitive remuneration package where you'll be rewarded for your individual and team performance. Our comprehensive Total Rewards package includes support for flexible working and career development, and with FlexEY you can select benefits that suit your needs, covering holidays, health and well-being, insurance, savings and a wide range of discounts, offers and promotions. Plus, we offer: Continuous learning: You'll develop the mindset and skills to navigate whatever comes next. Success as defined by you: We'll provide the tools and flexibility, so you can make a meaningful impact, your way. Transformative leadership: We'll give you the insights, coaching and confidence to be the leader the world needs. Diverse and inclusive culture: You'll be embraced for who you are and empowered to use your voice to help others find theirs. If you can demonstrate that you meet the criteria above, please contact us as soon as possible. Apply Now
Feb 14, 2026
Full time
Director - Cybersecurity - Cyber Resilience, TC, UKI Location: London Other locations: Primary Location Only Date: 27 Jan 2026 Requisition ID: At EY, we're all in to shape your future with confidence. We'll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world. Job Title: Director - Cybersecurity - Cyber Resilience About EY: At EY, we are committed to building a better working world. Our Cybersecurity Consulting Practice is rapidly expanding, and we are investing in our capabilities to meet the increasing demand for cybersecurity solutions. Join us and be part of a global team of over 13,000 professionals dedicated to delivering cutting-edge security transformation programs and services. The Opportunity: As a Director in Cybersecurity - Cyber Resilience, you will bring diverse perspectives and deep subject matter expertise to deliver high quality insights and outcomes for our clients. You will play a strategic leadership role in shaping and overseeing complex cybersecurity resilience engagements, strengthening senior client relationships, and guiding teams to develop innovative, practical solutions that help build greater resilience into their businesses. Key Responsibilities: Lead and deliver cyber resilience transformation programmes, owning end-to-end engagement delivery (scope, quality, timeline, budget) and ensuring outcomes measurably improve preparedness, response, and recovery. Design, run, and continuously enhance cyber crisis simulations and tabletop exercises for executives and operational teams-ensuring scenarios reflect the current threat landscape, sector trends, and the client's critical business services. Act as an outstanding facilitator and "crisis conductor": guide senior leaders through high pressure decision making, inject realistic developments, challenge assumptions, and drive clear actions, owners, and lessons learned. Translate threat intelligence and emerging attacker tactics into practical resilience improvements-linking likely threats to business impact, critical dependencies, and control or capability gaps. Integrate cyber response and recovery into wider enterprise resilience plans, including business continuity, IT disaster recovery, operational resilience, third-party resilience, and enterprise risk management-ensuring cyber is embedded, not bolted on. Partner with C-suite and functional leaders (CIO, CISO, COO, Risk, Legal, Comms, HR, Ops) to strengthen organisational readiness, clarify risk appetite, and improve cross-functional coordination during incidents. Build capability roadmaps and investment cases for resilience (people/process/technology), prioritising initiatives that reduce time-to-detect, time-to-respond, and time-to-recover for critical services. Shape and grow a cyber resilience offering: originate opportunities, develop proposals, create market-facing materials, and contribute thought leadership aligned to evolving resilience and regulatory expectations. Lead, coach, and inspire a high-performing cyber resilience team-developing facilitation skills, incident leadership, scenario design expertise, and client advisory confidence. Skills and Attributes for Success: Exceptional facilitator and communicator-able to run engaging, high-impact workshops and crisis simulations, influencing senior audiences across business, technology, and risk. Deep understanding of the cyber threat landscape and attacker behaviours, with the ability to convert threat insight into relevant scenarios, decision points, and resilience improvements. Strong resilience practitioner mindset: comfortable operating in ambiguity, steering complex stakeholder groups, and driving structured outcomes under time pressure. Strategic problem solver-able to diagnose resilience gaps, design pragmatic target-state capabilities, and secure executive buy-in by linking cyber resilience to business continuity and critical service delivery. Experienced programme and engagement leader-able to structure and manage large, complex initiatives and deliver measurable resilience outcomes. Commercially astute and quality-driven-balancing pace with rigour, managing delivery risk, and protecting client and firm reputation. Collaborative leader-builds trusted relationships, develops talent through coaching and mentoring, and fosters a culture of continuous learning and accountability. Confident advisor at board/exec level-able to discuss governance, risk appetite, crisis communications, regulatory considerations, and operational resilience expectations. Strong market access and trusted relationships, leveraging established sector networks and senior level contacts to originate opportunities, shape market conversations, and strengthen the firm's position with key decision makers. To Qualify for the Role, You Must Have Proven experience leading cyber resilience, incident readiness, and/or crisis management programmes-demonstrating tangible improvements in preparedness, response effectiveness, and recovery capability. Strong track record designing and facilitating cyber crisis simulations and tabletop exercises for senior stakeholders, including scenario development, exercise delivery, and after-action reporting with actionable remediation plans. Experience building or enhancing incident response and recovery operating models: governance, roles, processes, playbooks, communications, and integration with ITDR/BCP. Demonstrable ability to embed cyber into wider business resilience frameworks (e.g., business continuity, operational resilience, third-party resilience) and align cyber capabilities to critical business services and impact tolerances. Ability to develop compelling investment cases and prioritised roadmaps for resilience capability uplift, aligned to organisational goals and risk appetite. Robust knowledge of relevant security and resilience frameworks and regulations (e.g., NIST CSF, NIS/NIS2, sector-specific resilience expectations), and practical experience translating these into implementable capabilities and controls. Strong stakeholder management experience across C-suite, technology, operations, legal, risk, and communications-ensuring coherent decision-making before, during, and after incidents. Ideally, You'll Also Have: Security-related qualifications such as CISSP, CISM, CISMP, CIISEC. Experience operating within an NCSC Assured Cyber Consultancy. Sector experience in one or more of the following: Government & Public Sector, Energy & Utilities, Retail and Consumer Products, Life Sciences, Telecoms, Media and Technology, or Transport. Professional services experience with market-leading organisations in delivering cybersecurity solutions. Join Us: At EY, you'll have the chance to build a meaningful and fulfilling career, supported by an inclusive culture and cutting-edge technology. Together, we can create a better working world for all. What we look for We're interested in people with integrity who can collaborate with people from a diverse range of backgrounds and crucially a growth mindset. What we offer We offer a competitive remuneration package where you'll be rewarded for your individual and team performance. Our comprehensive Total Rewards package includes support for flexible working and career development, and with FlexEY you can select benefits that suit your needs, covering holidays, health and well-being, insurance, savings and a wide range of discounts, offers and promotions. Plus, we offer: Continuous learning: You'll develop the mindset and skills to navigate whatever comes next. Success as defined by you: We'll provide the tools and flexibility, so you can make a meaningful impact, your way. Transformative leadership: We'll give you the insights, coaching and confidence to be the leader the world needs. Diverse and inclusive culture: You'll be embraced for who you are and empowered to use your voice to help others find theirs. If you can demonstrate that you meet the criteria above, please contact us as soon as possible. Apply Now
Director, Cybersecurity, Cyber Resilience, TC, UKI Location: London Job Title: Director - Cybersecurity - Cyber Resilience About EY: At EY, we are committed to building a better working world. Our Cybersecurity Consulting Practice is rapidly expanding, and we are investing in our capabilities to meet the increasing demand for cybersecurity solutions. Join us and be part of a global team of over 13,000 professionals dedicated to delivering cutting edge security transformation programs and services. The Opportunity: As a Director in Cybersecurity - Cyber Resilience, you will bring diverse perspectives and deep subject matter expertise to deliver high quality insights and outcomes for our clients. You will play a strategic leadership role in shaping and overseeing complex cybersecurity resilience engagements, strengthening senior client relationships, and guiding teams to develop innovative, practical solutions that help build greater resilience into their businesses. Key Responsibilities: Lead and deliver cyber resilience transformation programmes, owning end to end engagement delivery (scope, quality, timeline, budget) and ensuring outcomes measurably improve preparedness, response, and recovery. Design, run, and continuously enhance cyber crisis simulations and tabletop exercises for executives and operational teams-ensuring scenarios reflect the current threat landscape, sector trends, and the client's critical business services. Act as an outstanding facilitator and "crisis conductor": guide senior leaders through high pressure decision making, inject realistic developments, challenge assumptions, and drive clear actions, owners, and lessons learned. Translate threat intelligence and emerging attacker tactics into practical resilience improvements-linking likely threats to business impact, critical dependencies, and control or capability gaps. Integrate cyber response and recovery into wider enterprise resilience plans, including business continuity, IT disaster recovery, operational resilience, third party resilience, and enterprise risk management-ensuring cyber is embedded, not bolted on. Partner with C suite and functional leaders (CIO, CISO, COO, Risk, Legal, Comms, HR, Ops) to strengthen organisational readiness, clarify risk appetite, and improve cross functional coordination during incidents. Build capability roadmaps and investment cases for resilience (people/process/technology), prioritising initiatives that reduce time to detect, time to respond, and time to recover for critical services. Shape and grow a cyber resilience offering: originate opportunities, develop proposals, create market facing materials, and contribute thought leadership aligned to evolving resilience and regulatory expectations. Lead, coach, and inspire a high performing cyber resilience team-developing facilitation skills, incident leadership, scenario design expertise, and client advisory confidence. Skills and Attributes for Success Exceptional facilitator and communicator-able to run engaging, high impact workshops and crisis simulations, influencing senior audiences across business, technology, and risk. Deep understanding of the cyber threat landscape and attacker behaviours, with the ability to convert threat insight into relevant scenarios, decision points, and resilience improvements. Strong resilience practitioner mindset: comfortable operating in ambiguity, steering complex stakeholder groups, and driving structured outcomes under time pressure. Strategic problem solver-able to diagnose resilience gaps, design pragmatic target state capabilities, and secure executive buy in by linking cyber resilience to business continuity and critical service delivery. Experienced programme and engagement leader-able to structure and manage large, complex initiatives and deliver measurable resilience outcomes. Commercially astute and quality driven-balancing pace with rigour, managing delivery risk, and protecting client and firm reputation. Collaborative leader-builds trusted relationships, develops talent through coaching and mentoring, and fosters a culture of continuous learning and accountability. Confident advisor at board/exec level-able to discuss governance, risk appetite, crisis communications, regulatory considerations, and operational resilience expectations. Strong market access and trusted relationships, leveraging established sector networks and senior level contacts to originate opportunities, shape market conversations, and strengthen the firm's position with key decision makers. To Qualify for the Role, You Must Have Proven experience leading cyber resilience, incident readiness, and/or crisis management programmes-demonstrating tangible improvements in preparedness, response effectiveness, and recovery capability. Strong track record designing and facilitating cyber crisis simulations and tabletop exercises for senior stakeholders, including scenario development, exercise delivery, and after action reporting with actionable remediation plans. Experience building or enhancing incident response and recovery operating models: governance, roles, processes, playbooks, communications, and integration with ITDR/BCP. Demonstrable ability to embed cyber into wider business resilience frameworks (e.g., business continuity, operational resilience, third party resilience) and align cyber capabilities to critical business services and impact tolerances. Ability to develop compelling investment cases and prioritised roadmaps for resilience capability uplift, aligned to organisational goals and risk appetite. Robust knowledge of relevant security and resilience frameworks and regulations (e.g., NIST CSF, NIS/NIS2, sector specific resilience expectations), and practical experience translating these into implementable capabilities and controls. Strong stakeholder management experience across C suite, technology, operations, legal, risk, and communications-ensuring coherent decision making before, during, and after incidents. Ideally, You'll Also Have: Security related qualifications such as CISSP, CISM, CISMP, CIISEC. Experience operating within an NCSC Assured Cyber Consultancy. Sector experience in one or more of the following: Government & Public Sector, Energy & Utilities, Retail and Consumer Products, Life Sciences, Telecoms, Media and Technology, or Transport. Professional services experience with market leading organisations in delivering cybersecurity solutions. Join Us: At EY, you'll have the chance to build a meaningful and fulfilling career, supported by an inclusive culture and cutting edge technology. Together, we can create a better working world for all. What we look for We're interested in people with integrity who can collaborate with people from a diverse range of backgrounds and crucially a growth mindset. What we offer We offer a competitive remuneration package where you'll be rewarded for your individual and team performance. Our comprehensive Total Rewards package includes support for flexible working and career development, and with FlexEY you can select benefits that suit your needs, covering holidays, health and well being, insurance, savings and a wide range of discounts, offers and promotions. Plus, we offer: Continuous learning: You'll develop the mindset and skills to navigate whatever comes next. Success as defined by you: We'll provide the tools and flexibility, so you can make a meaningful impact, your way. Transformative leadership: We'll give you the insights, coaching and confidence to be the leader the world needs. Diverse and inclusive culture: You'll be embraced for who you are and empowered to use your voice to help others find theirs. If you can demonstrate that you meet the criteria above, please contact us as soon as possible. Apply Now TCCyberUKI2026 Cyber2026 EY Building a better working world
Feb 12, 2026
Full time
Director, Cybersecurity, Cyber Resilience, TC, UKI Location: London Job Title: Director - Cybersecurity - Cyber Resilience About EY: At EY, we are committed to building a better working world. Our Cybersecurity Consulting Practice is rapidly expanding, and we are investing in our capabilities to meet the increasing demand for cybersecurity solutions. Join us and be part of a global team of over 13,000 professionals dedicated to delivering cutting edge security transformation programs and services. The Opportunity: As a Director in Cybersecurity - Cyber Resilience, you will bring diverse perspectives and deep subject matter expertise to deliver high quality insights and outcomes for our clients. You will play a strategic leadership role in shaping and overseeing complex cybersecurity resilience engagements, strengthening senior client relationships, and guiding teams to develop innovative, practical solutions that help build greater resilience into their businesses. Key Responsibilities: Lead and deliver cyber resilience transformation programmes, owning end to end engagement delivery (scope, quality, timeline, budget) and ensuring outcomes measurably improve preparedness, response, and recovery. Design, run, and continuously enhance cyber crisis simulations and tabletop exercises for executives and operational teams-ensuring scenarios reflect the current threat landscape, sector trends, and the client's critical business services. Act as an outstanding facilitator and "crisis conductor": guide senior leaders through high pressure decision making, inject realistic developments, challenge assumptions, and drive clear actions, owners, and lessons learned. Translate threat intelligence and emerging attacker tactics into practical resilience improvements-linking likely threats to business impact, critical dependencies, and control or capability gaps. Integrate cyber response and recovery into wider enterprise resilience plans, including business continuity, IT disaster recovery, operational resilience, third party resilience, and enterprise risk management-ensuring cyber is embedded, not bolted on. Partner with C suite and functional leaders (CIO, CISO, COO, Risk, Legal, Comms, HR, Ops) to strengthen organisational readiness, clarify risk appetite, and improve cross functional coordination during incidents. Build capability roadmaps and investment cases for resilience (people/process/technology), prioritising initiatives that reduce time to detect, time to respond, and time to recover for critical services. Shape and grow a cyber resilience offering: originate opportunities, develop proposals, create market facing materials, and contribute thought leadership aligned to evolving resilience and regulatory expectations. Lead, coach, and inspire a high performing cyber resilience team-developing facilitation skills, incident leadership, scenario design expertise, and client advisory confidence. Skills and Attributes for Success Exceptional facilitator and communicator-able to run engaging, high impact workshops and crisis simulations, influencing senior audiences across business, technology, and risk. Deep understanding of the cyber threat landscape and attacker behaviours, with the ability to convert threat insight into relevant scenarios, decision points, and resilience improvements. Strong resilience practitioner mindset: comfortable operating in ambiguity, steering complex stakeholder groups, and driving structured outcomes under time pressure. Strategic problem solver-able to diagnose resilience gaps, design pragmatic target state capabilities, and secure executive buy in by linking cyber resilience to business continuity and critical service delivery. Experienced programme and engagement leader-able to structure and manage large, complex initiatives and deliver measurable resilience outcomes. Commercially astute and quality driven-balancing pace with rigour, managing delivery risk, and protecting client and firm reputation. Collaborative leader-builds trusted relationships, develops talent through coaching and mentoring, and fosters a culture of continuous learning and accountability. Confident advisor at board/exec level-able to discuss governance, risk appetite, crisis communications, regulatory considerations, and operational resilience expectations. Strong market access and trusted relationships, leveraging established sector networks and senior level contacts to originate opportunities, shape market conversations, and strengthen the firm's position with key decision makers. To Qualify for the Role, You Must Have Proven experience leading cyber resilience, incident readiness, and/or crisis management programmes-demonstrating tangible improvements in preparedness, response effectiveness, and recovery capability. Strong track record designing and facilitating cyber crisis simulations and tabletop exercises for senior stakeholders, including scenario development, exercise delivery, and after action reporting with actionable remediation plans. Experience building or enhancing incident response and recovery operating models: governance, roles, processes, playbooks, communications, and integration with ITDR/BCP. Demonstrable ability to embed cyber into wider business resilience frameworks (e.g., business continuity, operational resilience, third party resilience) and align cyber capabilities to critical business services and impact tolerances. Ability to develop compelling investment cases and prioritised roadmaps for resilience capability uplift, aligned to organisational goals and risk appetite. Robust knowledge of relevant security and resilience frameworks and regulations (e.g., NIST CSF, NIS/NIS2, sector specific resilience expectations), and practical experience translating these into implementable capabilities and controls. Strong stakeholder management experience across C suite, technology, operations, legal, risk, and communications-ensuring coherent decision making before, during, and after incidents. Ideally, You'll Also Have: Security related qualifications such as CISSP, CISM, CISMP, CIISEC. Experience operating within an NCSC Assured Cyber Consultancy. Sector experience in one or more of the following: Government & Public Sector, Energy & Utilities, Retail and Consumer Products, Life Sciences, Telecoms, Media and Technology, or Transport. Professional services experience with market leading organisations in delivering cybersecurity solutions. Join Us: At EY, you'll have the chance to build a meaningful and fulfilling career, supported by an inclusive culture and cutting edge technology. Together, we can create a better working world for all. What we look for We're interested in people with integrity who can collaborate with people from a diverse range of backgrounds and crucially a growth mindset. What we offer We offer a competitive remuneration package where you'll be rewarded for your individual and team performance. Our comprehensive Total Rewards package includes support for flexible working and career development, and with FlexEY you can select benefits that suit your needs, covering holidays, health and well being, insurance, savings and a wide range of discounts, offers and promotions. Plus, we offer: Continuous learning: You'll develop the mindset and skills to navigate whatever comes next. Success as defined by you: We'll provide the tools and flexibility, so you can make a meaningful impact, your way. Transformative leadership: We'll give you the insights, coaching and confidence to be the leader the world needs. Diverse and inclusive culture: You'll be embraced for who you are and empowered to use your voice to help others find theirs. If you can demonstrate that you meet the criteria above, please contact us as soon as possible. Apply Now TCCyberUKI2026 Cyber2026 EY Building a better working world
