Head Of Cyber Security Incident Management

Head of Cyber Security Incident Management

Guildford – Mainly Remote 1 day per week in the office

3 Months

GBP700p/d – GBP800p/d – Umbrella Only

Fantastic new contract opportunity for an experienced Head of Cyber Security Incident Management with this market–leading financial services business based in Surrey. The Head of Cyber Security Incidentdent Management is a key role within the Operational Resilience Team, responsible for ensuring the organisation's ability to respond effectively to disruptions directly to the organisation or the supplier chain relating to a cyber event.

You will ensure appropriate cyber related incident and crisis management playbooks exist and re maintained. You will also be responsible for continually improving the approach to cyber crisis and Incident Management across the business, including taking the lead on playbook execution for specific crises or incidents. You will work closely with the Head of Business Continuity Management and the Crisis and Incident Manager to ensure that the design and execution of a multi–year test plan covers key cyber aspects and proactively assesses and validates the operational resilience across the business.

Key responsibilities:

Incident and Crisis Management

• Responsible for managing and leading Cyber Security crises including within the business's supply chain, ensuring proper assessment, containment, mitigation, and documentation in a complex global enterprise.
• Responsible for implementing breach response best practices and upkeep of Cyber incident response plans, standard operating procedures, and cyber incident response playbooks.
• Ensure cyber related incident and crisis management approach and playbooks are communicated and understood throughout the business, and that relevant individuals are suitably trained to execute their role in incidents or crises.
• Initiate Cyber Forensics and digital investigation requirements to support response and recovery process, as needed.
• Maintain detailed tracking plan of all internal/external outcomes/recommendations and provide support through to implementation.
• Responsible for identifying trends from cyber incidents and proposing improvements to address any weaknesses.
• Work closely with Information Security and IT teams to improve cyber related to controls.

Cyber Resilience Testing

• Define and agree a strategy for how to use testing to demonstrate cyber resilience and/or identify vulnerabilities, including how to prioritise how and when to test different IBSs and business assets.
• Build, develop and refine a cyber scenario library that summarises a range of severe but plausible scenarios that can be used for testing purposes. The scenarios will be based on the risks/threats pertinent to.
• Contribute to the development of the multi–year resilience testing plan, including disaster recovery testing, based on the strategy, which incorporates a range of types of tests according to each test's objectives.
• Facilitate regular cyber testing and exercises to validate the effectiveness of the business continuity plans. Evaluate the results, identify areas for improvement, and update the plans accordingly.
• Ensure disaster recovery testing complements and supports the multi–year scenario test plan to ensure full resilience testing is undertaken.

Alignment and Engagement

• Build strong relationships with key stakeholders across the organisation, including senior executives, department heads, and business unit leaders. Collaborate with them to ensure their business continuity needs are understood and incorporated into the overall program.
• Maintain links with Risk, Compliance, Information Security and ITSCM functions in particular in order to align activities with key business risks and risk processes and reporting.
• Collaborate with external partners, regulatory bodies, and industry peers to share knowledge, benchmark performance, and stay informed about emerging trends and regulations in business continuity management, Incident Management and testing.

Skills and Experience required:

• Proven experience of working within a similar Head of Cyber Security Incident Management or Cyber Security Incident Management position.
• In–depth knowledge of Information Security and Cyber Security Incident Management.
• Proven experience of working within a large–scale enterprise environment.
• Experience of working within a highly regulated environment, ideally financial services.
• Proven experience designing, refining, and implementing Cyber Security incident and crisis management playbooks.
• Proven experience building strong relationships across a wide variety of senior stakeholders.

For more information or to apply please send a copy of your CV to