Head of Cyber - Hybrid York - £130,000
Working with one of our globally recognised clients within the insurance industry, we are looking for a Head of Cyber to oversee the global cyber security operations.
This is a brand new role within the organisation, and along with your technical background, you will be leading a team across the world.
Our client is currently undergoing a huge transformation, which you will be a pivotal part of.
You will be responsible for leading a multidisciplinary team consisting of Red Team, Blue Team, Security Engineers, and Service Delivery leads. Technical knowledge and experience of both Red and Blue Team activities is essential to the success of this role.
Responsibilities:
1. Responsible for the end-to-end delivery of cybersecurity operations for the business.
2. Build, develop, and maintain a roadmap of operational security capabilities for the Fusion Centre, based on agile and continuous improvement processes.
3. Develop, implement, test, and maintain our cyber incident response processes and procedures - including the timely triage, analysis, containment, eradication, and recovery from an incident.
4. Provide technical leadership to a multidisciplinary team of security analysts (Red and Blue), engineers, and service delivery managers.
5. Design, deliver, and manage cyber-related exercises such as table tops and cyber ranges.
6. Measure the effectiveness and performance of operational security controls through KRI and KPI metrics - ensuring operational readiness and resilience are maintained to acceptable levels.
Your Experience:
1. Strong knowledge of security frameworks, standards, and best practices (e.g., NIST, ISO, CIS, etc.).
2. Strong knowledge of security technologies, tools, and methodologies (e.g., firewalls, encryption, penetration testing, etc.).
3. Familiar with financial services (preferably insurance) security standards and regulatory requirements.
4. Previous experience leading and managing a Security Operations Centre (preferably a next generation Cyber Fusion Centre), or a global Cyber Incident Response Team (CIRT).
5. Certified Information Systems Security Professional (CISSP), or equivalent certification is desirable.
6. Industry recognised qualifications and experience in penetration testing (preferably CREST certified) and incident response handling is desirable.
If this role sounds like your next career move, click "Apply Now" or email lauren.hamer@oliverjames.com
#J-18808-Ljbffr