As Service Express has been growing, so have our teams to support our expansion As such, we are looking to add a new position of Director of Global Security to lead our global security strategy, ensuring the protection of our clients' data and systems, and maintaining regulatory compliance across all aspects of our business operations. This key leadership role will play a pivotal part in shaping the future of our company's security posture and fostering a culture of security awareness throughout the organization. The position will report to the CIO and be responsible for a team of Security Specialists based in the USA & the UK. It's an opportunity to be looked to as a business leader as we continue to expand into new markets throughout Europe and eventually into more countries. Here’s what this position is all about: Business Partner Act as a business partner to increase the company’s overall performance including sales with request for proposal responses, and customer presentations Act as a business partner with product development to ensure we are designing market leading products including the appropriate security measures to meet customers’ expectations Assist in the assessment of new acquisitions including due diligence and business integration Develop and Implement Information Security Strategy Create and implement a comprehensive information security strategy to support the company's growth and global expansion plans Create an annual security plan including organization, people, process, and technology to achieve the information security strategy and roadmap Ensure there is a 3-year roadmap for all security technologies to effectively plan for capacity and growth requirements, vendor upgrades, and annual budget planning Assess new and emerging technologies that can improve overall security effectiveness, enhance cost optimization, drive innovation, and adapt the security strategic plan accordingly Make recommendations and business cases for new security investments System Design & Implementation Based on the overall company technical architecture, design security solutions that ensure availability, scalability, performance, and security of all systems Design and document all required system administration and maintenance processes to ensure ongoing support of the security systems Ensure appropriate security is designed and implemented with all new in-house developed solutions and external third-party solutions Project Management Define and manage projects to implement new and upgraded security policies, processes and technologies within time, budget, and scope expectations Ensure all projects are implemented according to the security architecture Ensure all projects are effectively handed over to security operations and other IT support teams to ensure the ongoing effective maintenance and support of the system Conduct end-user training to ensure that end-users are trained in the effective use of the new security technologies Process Management Conduct risk assessments to identify potential security risks and vulnerabilities, and establish plans to mitigate or reduce the risk Create, implement, and maintain a comprehensive set of security policies, processes and controls to ensure compliance with relevant industry standards, regulations, and best practices (SOC2, ISO27001, etc.) Ensure the effective management of IT security policies and procedures across the organization including regular management reviews and audits to ensure ongoing compliance Create a security dashboard and reporting to demonstrate the overall security position of the company, the value of security and overall performance of the security Team Security Operations Center & Incident Response Lead and direct the security operations team in monitoring, detecting, and responding a prompt and effective response to security incidents and breaches Create a security incident response plan Manage security incidents minimizing the potential impact of any Incident Oversee thorough incident investigations and implement remediation measures to ensure corrective actions are completed Supplier Management Manage all security suppliers ensuring they meet contractual commitments Establish vendor security standards and ensure compliance with contractual obligations Evaluate and assess security risks associated with third-party vendors and contractors for all business units, including the creation of corrective actions plans as necessary Financial Management Create an annual operating and capital budget to align with overall company strategic and financial objectives Manage annual operating and capital expenditure budget for information security Maintain monthly cost forecasts to ensure annual budgets are achieved Continuously evaluate the current environment to establish new ideas for cost optimization People Leadership Design and create a global security organization structure to meet current and future business requirements Recruit, develop and lead a highly motivated team of security professionals Foster a collaborative and high-performance work environment Model the Service Express Way and its people-powered culture Security Awareness and Training Organize and deliver security awareness training programs for employees, promoting a culture of security throughout the organization Data Protection and Privacy Ensure compliance with data protection regulations (e.g., GDPR, CCPA) and enforce privacy policies Establish data classification and handling procedures to protect sensitive information Disaster Recovery Planning (DRP) and Business Continuity Planning (BCP) Define and own the overall company disaster recovery plan and business continuity plan Define the DRP & BCP policies and standards Ensure that all appropriate Business Impact Analysis (BIA) are complete across the company Assist business teams in the completion of the BIA’s and implementation of changes to reduce the overall business risk caused by a DRP or BCP Incident What we are hoping you can bring to the Service Express team: Proven ability to build trust with business stakeholders and effectively communicate security concepts to both business leaders and the security team Demonstrated experience in developing and executing strategic plans that engage and motivate employees In depth knowledge of information security principles, risk management, regulatory compliance, and security systems Proven experience managing 24/7 security operations, handling incidents, and implementing security certifications like ISO27001 and SOC2 Strong budget planning and financial management capabilities related to security operations, combined with a proactive problem solving attitude and service-oriented approach Effective influencing and negotiating skills for working with security vendors ITIL, CISSP, CISM or equivalent certification preferred What you will get? Up to £150,000 annual salary plus bonus Lifestyle Benefits, Employee Assistance Program, Life assurance, Private Medical Insurance and more. Paid volunteer hours A Collaborative company that focuses on providing our employees and customers through the best experience On site Gym and use of personal trainers Service Express is an equal opportunity employer. Authorization to work in the country you are applying to is a precondition of employment. Service Express does not sponsor applicants for work visas. We process your information in accordance with our Privacy Policy. For European residents, click here to review our fair processing notice.