Head of Information Security – London - £95-105K + exceptional package

Location: London
Job Type: Permanent
Industry: Technology
Reference: BH-1654-1
Salary: £90000 - £105000 per annum, Benefits: Bonus + Corporate Package
Job Published: January 13, 2021 20:28
 
Head of Information Security – London - £95-105K + exceptional package

One of the UK’s leading insurance groups required a Head of Information Security to be based out of its London HQ (home during Covid). 
 
The Head of Information Security is accountable for ensuring the integrity, confidentiality and availability of information that is owned and controlled.
 
Building out a Cyber and Information Security risk framework.
 
To develop, implement, and monitor a strategic Information Security roadmap to ensure that it complies with the agreed risk appetite.
 
Responsible for managing an information security team, focusing on 3 key areas.
  • Security Governance Risk, Compliance, including IT Risk and Audit, to ensure that control objectives are achieved for Information Security
  • Security Operations to focus on SIEM and vulnerability management.
  • Access Management, (Starters, movers and leavers).
 
Establish activities to mitigate threats to the company, customer and client data to an agreed and acceptable level.
 
Develop, and maintenance an information security awareness campaign to ensure that the security mindset and culture is embedded and adhered to across the whole organisation.
 
The Head of Information Security ensures all agreed KRI’s are achieved and that effective policies and processes are in place to meet these. Where key targets are not achieved, then the Head of Information Security is accountable for managing the Information Security remediation plans.
 
Required skills
 
  • Senior management experience of delivering InfoSec programmes working across business, technical and functional areas
  • Third Party Due Diligence
  • Experience of managing budgets
  • In depth knowledge of the payment card industry data security standard (PCI DSS)
  • In depth knowledge of ISO 27001 certification
  • In depth knowledge of SANS Framework
  • Experience with contract and vendor negotiations
  • Experience in providing Infosec assurance to technical teams implementing:
  • Experience with contract and vendor negotiations
  • Experience in providing Infosec assurance to technical teams implementing:
    • company and BOYD device security
    • cloud computing platform security
    • supplier provided SaaS systems
    • application security and the SDLC for proprietary/bespoke software product development
  • monitoring systems and procedures to ensure compliance in a cloud-based environment
 
This position is currently home based but will require some travel to the London office when conditions allow. Salary is between £95-105K with an excellent package.
 
Very good opportunity to join a market leader in a senior leadership role with excellent growth potential.