Head of Cyber Security & Resilience Engineering
Are you a visionary cybersecurity leader with a passion for resilience, innovation, and partnership? This is a pivotal opportunity to join a global organization in Oxfordshire as the Head of Cyber Security & Resilience Engineering, where you’ll lead the development and implementation of cutting-edge cybersecurity strategies and solutions to protect critical technology and information assets.
A key aspect of this role is managing third-party suppliers and ensuring their capabilities are integrated effectively into the organization’s cybersecurity strategy. This role is perfect for a leader who thrives on tackling complex challenges, balancing internal and external collaboration, and delivering measurable security outcomes in a fast-paced, ever-changing environment.
As the Head of Cyber Security & Resilience Engineering, you’ll:
Shape Strategy & Leadership:
* Develop and deliver a multi-year cybersecurity infrastructure strategy to detect, prevent, and respond to evolving threats.
* Partner with Enterprise Architecture to design robust, scalable, and secure solutions across cloud, on-premise, and hybrid environments.
* Collaborate with IT, HR, and other business areas to align security initiatives with organizational goals while ensuring compliance with all regulations.
* Build an effective third-party operating model, ensuring value for money, robust performance, and alignment with industry standards.
Manage Third-Party Suppliers:
* Lead efforts to select, onboard, and manage third-party suppliers, ensuring their capabilities align with the organization’s cybersecurity and resilience goals.
* Establish clear objectives, performance benchmarks, and contractual responsibilities for external partners to maximize value and minimize risks.
* Ensure seamless integration of third-party services into the end-to-end operating model, with continuous evaluation to maintain compliance and effectiveness.
* Drive accountability among partners to meet high standards for security and resilience delivery, ensuring measurable outcomes.
Protect the Technology Landscape:
* Identify, map, and secure critical technology, application, and information assets.
* Leverage threat intelligence to continually assess risks and prioritize protection initiatives based on the ever-changing threat landscape.
* Drive end-to-end visibility of risks, threats, and vulnerabilities across internal systems and third-party relationships.
Deploy Cutting-Edge Security Tools:
* Oversee the selection, deployment, and optimization of essential cybersecurity tools, such as SIEM, EDR, IAM, and firewalls.
* Evaluate and introduce innovative technologies to strengthen the organization’s security posture.
* Develop business cases for cybersecurity investments, demonstrating clear value and delivering measurable benefits.
Drive Change Delivery:
* Manage the successful implementation of cybersecurity initiatives, ensuring clear objectives, prioritization, and outcomes.
* Transition security enhancements seamlessly into operations, integrating responsibilities across internal teams and external partners.
* Establish processes for consistent tracking and measurement of delivery against time, cost, and quality benchmarks.
Ensure Compliance & Best Practice:
* Develop and maintain policies aligned with industry standards such as NIST CSF, ISO 27001, and PCI DSS.
* Ensure compliance with regulations, including GDPR, and adapt policies to address emerging threats.
* Lead audits to evaluate the effectiveness of policies and measure adherence across teams and partners.
Foster Awareness & Culture:
* Contribute to the delivery of comprehensive cybersecurity training programs.
* Promote a culture of security awareness across all teams and partners, measured through user training completion rates and phishing test outcomes.
What You Bring
We’re looking for a leader with:
Essential Attributes:
* Strong communication and stakeholder management skills, with the ability to influence at all levels.
* Integrity, credibility, and a proven ability to deliver results in challenging environments.
* High emotional intelligence and resilience, embracing feedback and continuous learning.
* The ability to maintain focus on long-term goals while delivering immediate value.
Skills & Knowledge:
* Expertise in modern security technologies, including SIEM, IDS/IPS, EDR, IAM, and forensic tools.
* Deep understanding of best practice frameworks (e.g., NIST CSF, ISO 27001).
* Proven experience managing third-party suppliers, ensuring accountability, cost-effectiveness, and security outcomes.
* A strategic mindset with excellent prioritization and organizational skills.
* Experience delivering security outcomes in global, cross-functional environments.
* Commercial acumen, with the ability to manage budgets and negotiate with partners.
This is a chance to make a significant impact by leading the cyber security and resilience agenda for a global organisation. A critical part of this role involves managing third-party suppliers to deliver world-class cybersecurity solutions while ensuring seamless integration into the broader technology landscape.
You’ll work at the cutting edge of technology, ensuring the business is prepared to face the challenges of an ever-evolving threat landscape. With access to world-class tools, talented teams, and dynamic environments, this role will empower you to shape the future of cyber security and resilience on a global scale.
If you’re ready to take the next step in your cyber security leadership journey, we’d love to hear from you. Apply now for consideration. Interviews to be held as early as next week.