Head of Information Security

Head Of Information Security - London, (some flex home-work available) - Circa £120k

I'm working on a retained headhunt to identify a suitable Information Security Leader for my client, a large retail organisation with a London HQ. I'm keen to talk to potential candidates with experience in distributed and online retail who have PREVIOUS technical skills, and can relate frameworks, compliance (Particularly PCI), and strategy to prioritised action at the coalface. The salary we're opening discussions at, around £90,000-£110,000, plus £6,000 car allowance, up to 20% bonus, medical etc. For the right individual there may some flexibility to this TBC.

We'd particularly love to talk to you if your skills extend to deep understanding of Payment Security, PCI DSS, 27001, legislation in the retail sector and its effects on business and profitability, as well as some awareness of incident management, secure SDLC, cyber engineering practises and more. The role holds some need for a smart diplomat, a champion of Information Security, and a smart communicator who can convey the increased opportunity for the business, that good InfoSec practises allow. The board of directors in the business look forward to engaging with an individual who can challenge the status-quo and bring energy to the table as well as plan and execute a 6-12-18-24 month plan, and grow and lead a team to achieve those objectives.

Some of the responsibilities and tasks for the successful candidate would look like;

1 - Prioritising and managing the existing threats within the business.

2 - Leading the strategy, to plan and execute a project for a continuous improvement programme to mitigate those, and manage new threats

3 - Enabling the business to explore new revenue streams, competitively and safely, through innovation and exploration of new technologies

4 - Understanding the technology stack and its vulnerabilities, and how to manage those in line with PCI / compliance / governance frameworks

5 - Advising the board on action and strategy in line with security needs on emerging projects, plans, technical growth.

Some skills you might have;

1 - Strong InfoSec leadership experience in a retail organisation.

2 - Experience of payment security and PCI-DSS across physical and online sales

3 - Vulnerability management and remediation experience

4 - Excellent stakeholder and influencing skills

5 - A technical background of some sort, to know when you're having the wool pulled over your eyes!

6 - A relevant degree

7 - CISA, CISM, CISSP, MSc InfoSec, or be a previous QSA / 27001 LA, SIRA, IA

We'd love to hear from you, even if you're only tentative in your job search at present. This is a genuine opportunity to mark out your role, and take ownership of something really unique and interesting. Please apply to me either with the "Apply Now" button, or at Tariq (dOt) Dirania (aT) circlerecruitment (dOt) com - You can also find me on LinkedIn if you want to check my background.

CISA, CISM, CISSP, Infosec Manager, Information Security Manager, CISO, Leader, Manager, Strategy, GDPR, PCI DSS, PCI QSA, ISO/IEC 27001, Retail, online, distributed, MSC, Degree, Stakeholder, project management, Information assurance, Vulnerability management, mitigation, cloud, hybrid, Lead Auditor, Compliance, Governance, Frameworks,

Circle Recruitment is acting as an Employment Agency in relation to this vacancy. Earn yourself a referral bonus if you refer somebody else who fills the role! We also offer an iPad if you refer a new client to us and we recruit for them. Follow us on Facebook - Circle Recruitment , Twitter - @Circle_Rec and LinkedIn - Circle Recruitment.