Oxfam is a global movement of people working together to end the injustice of poverty.
Are you a visionary leader with a passion for safeguarding sensitive information on a global scale?
Do you have the technical expertise to develop and implement leading information security and data protection strategies that ensure compliance and security?
Can you inspire teams to prioritise information security in an ever-evolving digital landscape?
The Role:
Oxfam GB is looking for a global Head of Information Security and Data Protection that will lead the Cybersecurity, Data Protection, and Information Governance teams to manage risk across these areas, while maintaining compliance with necessary regulations and control frameworks. As well as its duties within OGB, it is also responsible for coordinating Information Security efforts across the wider Oxfam confederation to lower the risk to Oxfam’s reputation and shared systems.
POST HOLDER REPORTS TO: Chief Transformation Officer
JOBS REPORTING TO THIS POST: Information Security Manager, Data Protection Manager, Data Protection Officer, Information Governance Lead
What we are looking for:
We’re looking for a candidate who cares about Oxfam's mission to end poverty and is personally aligned to our feminist principles and values of empowerment, accountability and inclusion in all you do.
An ideal candidate for the role will also be / have:
1. Proven experience in a senior leadership role focused on information security, preferably in a large and complex organisational setting.
2. In-depth knowledge of information security principles, standards, frameworks, and best practices (e.g., CIS, NIST or ISO-27001).
3. Experience managing PCI-DSS compliance for a large organisation across a range of payment channels.
4. Detailed knowledge of GDPR and experience running a privacy team providing data privacy services.
5. Experience leading, managing, developing, and setting direction for teams of specialists.
6. Exceptional communication and interpersonal skills, with the ability to effectively influence stakeholders at all levels of the organisation on good Information Security, Cybersecurity, Information Governance and Data Protection processes.
7. Familiarity with Vulnerability Management and Threat Management processes; SIEM, EDR, WAF, SSO, VA tools; and Penetration Testing, Cyber Breach Insurance, MSSP services.
8. Experience delivering large projects, with the ability to prioritise and lead multiple complex initiatives simultaneously.
9. Familiarity with relevant laws, regulations, and compliance standards pertaining to information security and privacy.
Desirable:
1. Bachelor's/Masters degree in Computer Science, Information Systems, or a related field OR related professional experience commensurate with formal qualifications.
2. Professional certifications such as CISSP, CISM, or equivalent.
We offer:
We offer a competitive salary and a range of additional benefits to staff including flexible working options, generous pension scheme, annual leave, additional leave allowances, company sick pay, life assurance and a range of other benefits.
From the day you join Oxfam we invite you to stretch and learn in your role. Our wide range of Learning & Development opportunities includes in-house courses, e-learning modules, on-the-job learning opportunities, coaching and mentoring, and much more.
You can read more about all Oxfam has to offer here.
Flexfam:
We believe flexible working is key to building the Oxfam of the future, so we’re open to talking through the type of flexible arrangements which might work for you.
How to apply:
As part of your online application, please upload your up-to-date CV and Cover Letter explaining your suitability against the essential criteria in the job profile.
#J-18808-Ljbffr