FIY-097 - Group Head of Information Security

FIY-097 - Group Head of Information Security

:



The Group Head of Information Security at Sanne, reporting to the Group Head of Technology Platforms, has the responsibility for managing Cyber resilience. You will ensure that the groupa€™s technology assets and systems remain safe and secure in an ever-changing threat landscape. You will manage a team of specialists to maintain cyber risk within appetite through the detection, analysis & response to cyber events. You will have a strong background in cyber and be comfortable both leading others as well as being a hands-on subject matter expert.



Key responsibilities:



- Define/deliver Group Cyber Strategy and Policies;

- Ensure the Cyber team has appropriate operating model to successfully manage resilience;



- Lead the Cyber team to identify and detect threats; protect, respond and recover from events;

- Build and manage an agile and advanced security environment in a high growth, global organization;

- Attract and retain talent, leading the Cyber team to continually evolve and improve;

- Partner with both clients and vendors on group security policies and roadmaps, supporting Due Diligence requests;

- Develop and enhance the information security management framework;

- Provide subject matter expertise to the Design Authority and other Committees to ensure security requirements and risk are considered;

- Ensure cyber risk is managed within appetite;

- Partner with business leaders to facilitate cyber risk assessment and risk management;

- Lead cyber awareness and training;

- Assist with audits and compliance monitoring;

- Provide timely reporting to communicate to Executive, Board and Risk Committees;

- Provide subject matter expertise to Mergers and Acquisitions, ensuring appropriate post-deal integration;

- Any other duties in the scope of the role that the company requires.

Requirements



Skills / experience;



- Innovative thinking and leadership with an ability to lead and motivate interdisciplinary teams;

- Uncompromising level of personal integrity

- Proven experience in Information Security, Risk Management or Technology related roles in a regulated environment as well as leading a Security Operations Centre;

- Professional security management certification and/or cybersecurity certification CISSP, CISSM, CISA, OSCP essential;

- Deep knowledge of common information security management frameworks, such as ISO/IEC 27001 and NIST;

- Understanding of audit compliance frameworks SOX, SOC, PCI, GDPR;

- Experience guiding policies and evangelizing through influence;

- Experience and expertise in industry leading 3rd party security tooling, including SIEM, DLP, Vulnerability and Anomaly Scanning, DDoS, AV/Malware, Mobile Device Mgt;

- Experience in virtualized and cloud-based environments (AWS preferred);

- Good analytical and problem-solving skills;

- Excellent communication and organization skills;

- Motivated and driven.

El anuncio original lo puedes encontrar en Kit Empleo:
https://www.kitempleo.es/empleo/16520021/fiy-097-group-head-information-security-madrid/?utm_source=html