Get AI-powered advice on this job and more exclusive features.
Please read the following job description thoroughly to ensure you are the right fit for this role before applying.
This range is provided by iFindTech Ltd. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.
Base pay range
London (Hybrid - 2 days in office per week)
Company Description:
Our client is a global provider of energy and commodity price reporting, news, and analysis. They specialise in delivering independent price assessments, market insights, and business intelligence across a wide range of industries, including oil, gas, metals, agriculture, and chemicals. Their goal is to help businesses make informed decisions by offering data-driven reports, consulting services, and digital tools that track market trends and pricing fluctuations. Their information is widely used by traders, analysts, and industry leaders to navigate complex global markets.
What you will be doing:
1. Create and manage enterprise-wide information security strategies and programme of planned compliance reviews and ensure any gaps are addressed.
2. Develop and maintain the information security policy and accompanying standards, procedures, and guidance.
3. Produce reports for the various security and compliance committees.
4. Promote security awareness by developing and implementing a security awareness and training programme.
5. Lead the investigation of information security incidents in accordance with the security incident management standard, produce reports with recommendations and ensure any remedial action is taken.
6. Assess current technology architecture for vulnerabilities, weaknesses, and possible upgrades or improvements.
7. Work with internal stakeholders to develop relationships to help promote and improve information security and provide security advice on architecture, procurements, projects, and new initiatives as required.
8. Communicate information security goals and new programs effectively with other department managers.
9. Maintain currency with emerging security trends, risks, new guidance or standards (internal and external), and security-enhancing technologies.
Skills and Experience Required:
1. A bachelor’s degree in computer science, electronic engineering, or a related field.
2. At least 2 years of team management, 10+ years in total cyber security experience.
3. A track record of successfully evolving a security-first culture in an organization with 1000+ employees.
4. Proven experience in delivering security in an Agile environment.
5. Experience of ISO27001, GDPR & HIPAA, NIST Cybersecurity Frameworks.
6. Holding recognized certifications: CCISO, CISM, CISSP, CEH.
7. Strong background in information technology with a clear understanding of the challenges of information security.
8. Some experience delivering security in a DevOps / DevSecOps / Rugged DevOps on AWS and hybrid environments.
9. Demonstrable analytical and problem-solving skills.
10. The ability to effectively interact with IT and Engineering teams at multiple global sites.
11. Strong interpersonal and communication skills to influence and collaborate with both technical and non-technical stakeholders and partners.
Salary + Benefits:
1. £130,000 - £140,000 fixed plus up to 20% bonus.
2. Competitive salary and company bonus scheme.
3. Group healthcare and life assurance scheme.
4. Flexible working environment.
5. 25 days holiday with annual increase up to 30 days.
6. Subsidised gym membership.
7. Season ticket travel loans.
8. Cycle to work scheme.
9. Extensive internal and external training.
Seniority level
Mid-Senior level
Employment type
Full-time
Job function
Information Technology
Industries
Technology, Information and Media
#J-18808-Ljbffr