iPeople SC Solutions is currently recruiting for Head of Cyber Security for our client based in Lincolnshire and surrounding areas.
The successful post holder must be a leader and driver with the capacity to tackle complex security issues within a diverse operational and technology environment, with many public and private sector partners.
The successful post holder must have a strong technical background in a variety of roles evidenced through your career progression, but at the same time possess the business acumen and communication skills to breakdown and convey technical challenges to non-technical audiences.
Duties & Responsibilities:
- Define and implement the cyber security strategy, roadmap and security improvement plan
- Assess the Cyber Security landscape for LCC and existing threats, vulnerabilities, and defences
- Drive a programme for the remediation of security vulnerabilities and improvements through LCC and partner delivery teams
- Develop policies, procedures and standards
- Take the lead for regular security health checks
- Provide expert advice and guidance on all cyber security related matters and ensure the wider technology teams are engaged and supported
- Manage and drive the security risk register
- Ensure our suppliers and vendors are appropriately assessed against our security controls frameworks and comply with our security standards and any certification claims
- Promote a culture of secure by design and left shift security throughout our project development lifecycle and delivery processes
- Support the agenda for our cloud first strategy and ensure any cloud solutions meet our security aspirations and requirements
- Take responsibility for incident management and lead our response to cyber security events, incidents and potential breaches
- Ensure our suppliers adequately monitor the IT estate for threats and alerts and are capable of responding to issues
Person Specification:
- Possesses relevant and current industry qualifications and certifications (e.g. CISM, CISSP).
- Educated to degree level in a relevant technical area or equivalent industry experience
- Security domain specific experience showing progression through a number of roles with increasing responsibilities
- Strong technical leadership, stakeholder management and communication skills
- Experience working in a public body, particularly a local authority would be advantageous
- Experience of working through matrix management of multi-disciplinary teams in complex infrastructure environments
- A strong technical background across Networks, Security, Firewall, Vulnerability Management, SIEM and EDR technologies
- Experience with cyber security concepts, such as Threat Modelling, Incident Response, Penetration Testing (external /internal)
- Advanced knowledge of cloud products and services e.g. Azure, Microsoft 365
- Emotionally intelligent and able to recognise and manage the needs and expectations of customers, both internal and external, whilst juggling priorities
- Excellent written and verbal communication skills with the ability to translate technical speak into easy to understand noncomplex language
- Able to engage with senior leaders to promote, and enable risk based decision making
Working Hours: 09.00 – 17.30 Monday- Friday
