Amey is a leading provider of full life-cycle engineering, operations, and decarbonisation solutions for transport infrastructure and complex facilities.
Working for us, youll be delivering sustainable infrastructure solutions that enhance life and protect our shared future.
Our people are driven by a set of strong values, based on safety, insight, and collaboration.
The Opportunity
We have a fantastic opportunity for a permanent Chief Information Security Officer to join Ameys group functions.
As Chief Information Security Officer you will play a critical role within the organisation, tasked with safeguarding the companys information assets and technologies. This will involve the development and maintenance of a comprehensive security strategy that aligns with Ameys goals and objectives.
Responsible for identifying potential security threats and vulnerabilities and implementing measures to mitigate those risks. This includes sponsoring the implementation of advanced security technologies and controls, conducting regular security assessments, and ensuring that all employees are appropriately trained in security best practices.
Key responsibilities:
1. Develop and deliver an information security strategy and improvement roadmap which will continuously enhance the organisations risk profile, aligned with strategic business objectives.
2. Develop and maintain an internal common control framework for information security and data protection which addresses all regulatory and commercial requirements.
3. Ensure ongoing regulatory compliance with all applicable data protection legislation and maintain a healthy relationship with regulators to avoid financial penalties and enforcement actions.
4. Develop and maintain an appropriately skilled team to deliver the published information security strategy and roadmap.
5. Monitor appropriate sources of threat intelligence and perform horizon scanning to identify emerging cybersecurity threats and risks associated with new technology trends.
6. Maintain appropriate levels of employee awareness across information security and data protection.
7. Understand the business appetite for framework accreditation and proactively target increased levels of certification.
8. Elevate the organisations profile and commitment to information security through continued external engagement with government, industry and client associations.
9. Sponsor and deliver technology and compliance initiatives aligned to agreed prioritisation.
10. Contribute to the preparation of bid submissions and actively look to deliver additional value across the information security and data protection aspects.
11. Contribute to the scoping and delivery of broader projects which might be managed by other teams, but which may have a dependency on information security.
12. Maintain strategic relationships with partners and suppliers that support the information security programme, strategy and key initiatives.
13. Mentor and support the information security team, providing development and growth opportunities.
What you will bring to us:
1. Degree in either Computer Science, Information Security, Law or Privacy
2. Professional qualifications and industry experience in Information Security / Cyber, such as CISM, CISSP and CISA are highly desirable
3. Knowledge of current information security related standards or regulations such as ISO27001, Cyber Essentials Plus, GDPR, PCI-DSS, NIST
4. Deep and ever evolving experience in Cyber and Information Security
5. Real world experience of cyber-attack and recovery ideally in a leadership role
6. General IT qualifications for breadth of experience
7. People Management knowledge to effectively manage teams
8. Financial knowledge to manage a cost centre
9. Security accredited to SC level will be required within 6 months
What we can offer you:
At Amey, we recognise that our biggest asset is our people. We offer flexibility, career development, a choice of benefits and support that help you through all lifes ups and downs.
Work-life Balance -
Work-life balance and flexibility are key for our success. We empower our people to make choices that are right for them, with hybrid, part-time and flexible work patterns.
Wellbeing -
Health cash plan, 24 GP, support and assistance programmes, wellbeing ambassadors and Wellbeing Wednesday, dental vouchers.
EDI-
At Amey we celebrate our people and all that they are. This is reflected in our Affinity Group networks, providing a community of support and connection.
Social Value -
Youll get 2 Community Involvement Days each year to volunteer for a charity of your choice.
Plus, a range of other great perks and benefits including:
1. Pension - Generous Pension scheme which we will contribute to
2. Holidays - Minimum 25 days holiday + Bank Holidays
3. Bonus - up to 20% of base salary
4. Car / Car allowance
5. Life assurance - 4 x base salary
6. Healthcare - private family cover via BUPA
7. Choices - Our flexible benefits scheme is tailored by you, including buying additional annual leave, cycle2work scheme, charity giving and gym membership.
8. Save with Amey - Our online voucher portal gives you access to discounts from leading retailers.
Application Guidance
Amey is committed to Inclusion and Diversity. We welcome applications from all suitably qualified candidates. Please contact our recruitment team at peopleservices@amey.co.uk to discuss any access needs or additional application support.
J-18808-Ljbffr