Chief Information Security Officer

We're looking for a candidate to fill this position in an exciting company.

• Accountability for all associated security day to day activities
• Development and Maintenance of all Info Sec Policies, Procedures and relevant standards and supporting documentation
• Deliver Information Security Assessments for clients and third parties
• Chairing internal and client-facing Security Working Groups and project meetings and facilitating internal security compliance reporting
• Proactively identifying information security deficiencies & opportunities for improvement and facilitating development of pragmatic solutions
• Manage the training, induction, and awareness program for employees
• Provide advisory and consulting support to help the firm improve its security posture and adhere to security policies, expected controls & regulatory requirements
• Ability to communicate effectively to technical and non-technical audiences
• Experience of modern Cloud platforms i.e. Azure, AWS or Google
• Business Continuity and/or Disaster Recovery planning
• Support and contribution to new bid opportunities, providing security and data protection expertise in developing new solutions for tenders.
• Risk and threat Assessments for infrastructure and software development
• Ability to conduct the role with a large degree of independence and integrity.

• Knowledge of Software Development Lifecycles
• Knowledge of Regulatory practices including Data Protection, GDPR
• A solid background in designing and implementing Information Security Management Solutions
• Experience in delivering and maintaining UK HMG IS1, PCI DSS, FEDRamp, FISMA, ISO27001 and Cyber Essentials PLUS aligned solutions
• A deep understanding of GDPR and EU Data Privacy matters
• Recognised IS qualifications (e.g. CISSP, CISM, CISMP or equivalent)
• Proven track record as a senior InfoSec professional, delivering into global organisations and native cloud environments