This range is provided by Xpertise Recruitment. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.
Base pay range
Managing Director at Xpertise Recruitment - Top to Bottom Technology, Data & Transformation recruitment
Head of IT Security & Cyber - £95-110k + benefits - Hybrid working - better if in range of Birmingham or Manchester
Are you a seasoned Head of IT Security interested in being the first dedicated IT security leader reporting into the Group IT Director and shaping IT security across a multi-divisional global business?
You will be leading a small team of 3, so this is a role for a hands-on, roll-your-sleeves-up person but also someone who can think strategically about the right blend of, for example, in-house and vendor-managed services, the right EQ in order to drive a culture of security thinking across a large business, and the experience to make the right recommendations on tooling, build consistent framework processes, and so on.
You will be responsible for managing and growing the IT Security team, ensuring effective governance of security incidents, risks, and controls. Youll play a vital role in supporting both internal teams and third-party suppliers to achieve business objectives and maintain compliance across the organisation.
Main Role Purpose:
Take the reins of the Cyber Security function and lead the IT Security team to drive excellence. Manage all aspects of IT Security, including incidents, risks, controls, and supplier services, to achieve IT, compliance, and business objectives. Act as a subject matter expert (SME) in IT and Cyber Security, collaborating with Compliance, Design, and Development teams to ensure the organisation is protected from threats.
Key Duties & Responsibilities:
1. Develop and maintain a Cyber Security strategy that aligns with the organisation’s goals.
2. Provide line management for the IT Security team, fostering a culture of improvement and collaboration.
3. Oversee audits and bid responses, ensuring robust IT Security considerations are addressed.
4. Manage third-party IT Security suppliers, ensuring Service Level Agreements (SLAs) are met.
5. Guide the business in maintaining compliance with standards such as ISO 27001, Cyber Essentials+, and more.
6. Identify and manage risks and vulnerabilities in line with industry standards.
7. Act as a point of escalation for IT incidents and resolve them efficiently.
8. Stay up-to-date with emerging threats in the IT and Cyber Security landscape and provide proactive advice.
9. Provide regular reporting to the business on operational performance, incidents, and problem analysis.
10. Ensure IT Security incidents are handled within Service Level Agreement (SLA) timelines.
11. Foster IT Security frameworks, ensuring adherence to operational and build requirements.
12. Travel to other sites as necessary to oversee operations.
Required Skills, Knowledge & Experience:
1. People Management: Proven experience leading and managing IT Security teams.
2. Certifications: Certified Information Security Manager (CISM) or equivalent, Certified Information Systems Security Professional (CISSP) or equivalent.
3. Experience: At least 5 years in a dedicated IT Security role.
4. Compliance Knowledge: Expertise in industry-standard compliance frameworks such as ISO 27001, ISO 27002, Cyber Essentials+, etc.
5. Cloud Platforms: Working experience with Azure, AWS, or GCP cloud platforms.
6. Technical Skills: Solid understanding of enterprise IT server technologies and environments.
7. Communication: Ability to present complex IT Security information to a non-technical audience with clarity.
8. Stakeholder Management: Experience managing internal stakeholders and third-party suppliers.
9. Problem-Solving: Excellent troubleshooting skills for diagnosing and resolving IT Security incidents.
10. Organizational Skills: Strong prioritisation, time management, and the ability to work under pressure.
11. Self-Starter: Proactive, with a positive attitude and strong ownership of responsibilities.
12. Security Clearance: Ability to attain the necessary security clearance.
13. Additional Certifications: CCISO or equivalent, CCSP or equivalent.
14. Firewall Expertise: In-depth technical support experience with firewalls.
15. Cyber Forensics: Knowledge of cyber forensics techniques.
16. ITIL & Prince2 Certifications: Additional certifications are a plus.
17. Mentoring: Experience providing technical mentoring and upskilling.
Seniority level
Director
Employment type
Full-time
Job function
Information Technology, Consulting, and Engineering
Industries
IT Services and IT Consulting and Engineering Services
J-18808-Ljbffr