Head of Cyber Security Consultancy
£90,000 - £100,000 p/a + bonus & corporate benefits
London - Hybrid
Permanent
Job Description
I am currently seeking a Head of Cyber Security Consultancy, who will be responsible for leading a team of 10 security specialists. Within the Consultancy function, the team is tasked with monitoring cybersecurity risks, conducting security assessments, supervising regulatory and clients' audits, leading projects to enhance security, advising on secure product development, and actively participating in global projects.
Key Responsibilities:
- Project Delivery. Oversee and ensure the successful delivery of security projects.
- Business Support. Provide ongoing support for day-to-day business operations, also known as Business As Usual (BAU) tasks.
- Security Audits and Assessments. Supervise both external and internal security audits and assessments related to information security.
- Team Management. Lead and manage a team of 10 individuals within a global Information Security group.
- Standards Implementation. Implement and maintain security standards, particularly ISO 27001.
- Framework Compliance. Ensure adherence to the NIST Cybersecurity Framework (CSF).
- Risk Management. Handle cybersecurity risk management.
- Security Evaluations. Conduct security audits, gap analyses, and other forms of security assessments.
- Trend Analysis. Stay informed about threats and trends in information security.
- Project Management. Manage various security-related projects efficiently.
Mandatory Requirements:
- At least 10 years of experience in the field of information security.
- Minimum of 4 years of experience in managing teams.
- Profound knowledge and experience in auditing and implementing ISO 27001 standards.
- Familiarity with the NIST Cybersecurity Framework.
- Extensive knowledge in cybersecurity risk management.
- Experience in conducting security audits, gap analyses, and other security assessments.
- Knowledge of and experience with current threats and trends in information security.
- Proven ability in managing projects.
- Understanding of the basics of secure programming.
Desirable Skills:
- Experience in automating security processes.
- Familiarity with the MITRE ATT&CK Framework.
- Experience in building identity management processes.
- Experience in developing security policies for O365.