Head of Cyber
Hybrid / York
£130,000 per annum
Working with one of our globally recognised clients within the insurance industry we are looking for a Head of Cyber to oversee the global cyber security operations.
This is a brand new role within the organisation and along with your technical background you will be leading a team across the world.
Our client is currently undergoing a huge transformation which you will be a pivotal part in.
You will be responsible for leading a multidisciplinary team consisting of Red Team, Blue Team, Security Engineers and Service Delivery leads. Technical knowledge and experience of both Red and Blue Team activities is essential to the success of this role.
Responsibilities:
* Responsible for the end-to-end delivery of cybersecurity operations for the business.
* Build, develop and maintain a roadmap of operational security capabilities for the Fusion Centre, based on agile and continuous improvement processes.
* Develop, implement, test and maintain our cyber incident response processes and procedures - including the timely triage, analysis, containment, eradication and recovery from an incident.
* Provide technical leadership to a multidisciplinary team of security analysts (Red and Blue), engineers and service delivery managers.
* Design, deliver and manage cyber related exercises such as table tops and cyber ranges.
* Measure the effectiveness and performance of operational security controls through KRI and KPI metrics - ensuring operational readiness and resilience are maintained to acceptable levels.
Your Experience :
* Strong knowledge of security frameworks, standards, and best practices (e.g., NIST, ISO, CIS, etc.).
* Strong knowledge of security technologies, tools, and methodologies (e.g., firewalls, encryption, penetration testing, etc.).
* Familiar with financial services (preferably insurance) security standards and regulatory requirements.
* Previous experience leading and managing a Security Operations Centre (preferably a next generation Cyber Fusion Centre), or a global Cyber Incident Response Team (CIRT).
* Certified Information Systems Security Professional (CISSP), or equivalent certification is desirable.
* Industry recognised qualifications and experience in penetration testing (preferably CREST certified) and incident response handling is desirable.
If this role sounds like your next career move click "Apply Now". #LI-PB1