W1siziisimnvbxbpbgvkx3rozw1lx2fzc2v0cy9jbgfyzw1vbnqty29uc3vsdgluzy9qcgcvymfubmvylwrlzmf1bhqylmpwzyjdxq

IT Security Director

Connecting

IT Security Director

  • Location

    Sunbury-On-Thames, Surrey

  • Sector:

    Engineering

  • Job type:

    Permanent

  • Salary::

    £80000 - £130000 per annum + benefits,

  • Contact:

    Victoria Elliott

  • Contact email:

    Victoria.elliott-ext@jci.com

  • High Salary:

    130000

  • Low Salary:

    80000

  • Reference:

    JOB1_1561622878

  • Job Published:

    5 months ago

  • Expiry Date:

    2019-07-27

What you will do

The successful candidate will be a visionary thinker capable of leading large, sophisticated global cybersecurity functions while interacting with the business and technology leaders, including the Chief Information Security Officer (CISO), Deputy Chief Information Security Officer (Deputy CISO) and Chief Information Officer (CIO).

How you will do it

* Lead regional cybersecurity efforts by partnering with regional and company leadership within cybersecurity, information technology and across various business functions (leadership, management, legal, compliance, internal audit, risk management, privacy, operations, sales, communications, logistics, procurement, and any other supporting functions)
* Responsible for assisting the global cybersecurity team as it pertains to cybersecurity governance, awareness and training, regional compliance, architecture, engineering and cyber defence, including support for cybersecurity incidents and crisis management within each region, accounting for regional, cultural and language differences
* Proactively work with each regional business leadership and management team regularly to ensure that cybersecurity strategic plans are known, and regional requirements and differences are integrated in to the cybersecurity strategic plan
* Responsible for identifying, evaluating and reporting on legal and regulatory, IT, and cybersecurity risk to information assets while simultaneously supporting business and enterprise objective, with specific requirements for GDPR, PCI DSS and UK Cyber Essentials for EMEA
* Working with regional leadership to identify information risks, risk tolerance and mitigation strategies within region while supporting the global cybersecurity risk appetite
* Ensure that information systems are secure and compliant with legal, regulatory and contractual obligations
* Actively participate with external bodies to influence cybersecurity, privacy and compliance-related legal and regulatory frameworks as they evolve

What we look for

* Knowledgeable cybersecurity leader with demonstrated understanding of cybersecurity concepts and practices
* Proven track record working in cybersecurity with management and/or leadership experience
* Comprehensive working knowledge of one or more cybersecurity frameworks (NIST, ISO, COBIT, etc.)
* Experience with risk management disciplines and audit/assurance practices
* Strategic leader with demonstrated ability to align cybersecurity with business operations
* Knowledge and experience with regional regulatory and legal landscape and obligations
* Demonstrated collaborative teaming skills, cross-functional team experience, relationship management capability and the ability to understand and appreciate cultural differences
* Excellent verbal, written, and interpersonal communications skills, including the ability to communicate security and risk-related concepts to both technical and non-technical audiences
* Strong ability to convey complex information risk, compliance, privacy and cybersecurity matters to stakeholders in a manner that is easily understood and actionable
* Ability to maintain a high level of discretion and personal integrity in the exercise of duties, including the ability to professionally address confidential matters
* Excellent oral and verbal communication skills and presentation capabilities
* Demonstrated ability to effectively facilitate and drive organizational change
* In addition, given the global nature of the company's operations, the successful candidate is expected to be internationally mobile
* Bachelor's degree in Information Systems or equivalent
* Information Security certification such as CISM, CISSP, CISA or equivalent