Your new role
The successful candidate will report to the Director of Technology & Digital Delivery and will be responsible for leading from the front in advancing the security of our architecture and will be responsible for all aspects of IT security & security operations within and for the company.

Key Responsibilities:
Defining and leading the implementation of the IT security strategy, including the process and technology controls to identify, protect, detect and respond to any emerging Cyber Security threat or incident.
• Maintaining an awareness of external threats and taking appropriate steps to protect the company.
• Managing the overall IT Security function, managing, coaching and mentoring of IT Security staff.
• Reviewing and advising on security designs for cloud, data, application and infrastructure projects.
• Being an IT security evangelist to other members of Group IT.
• Driving the IT security education programme.
• Chairing the IT Security Forum with partners and business advisors. Defining and leading the implementation of the IT security strategy, including the process and technology controls to identify, protect, detect and respond to any emerging Cyber Security threat or incident.
• Maintaining an awareness of external threats and taking appropriate steps to protect the company.
• Managing the overall IT Security function, managing, coaching and mentoring of IT Security staff.
• Reviewing and advising on security designs for cloud, data, application and infrastructure projects.
• Being an IT security evangelist to other members of Group IT.
• Driving the IT security education programme.
• Chairing the IT Security Forum with partners and business advisors.

What you'll need to succeed
Experience of working as an IT Security Manager, IT Security Consultant or a similar, senior role in IT security.
• Experience of defining IT security strategy and leading its implementation.
• Ability to communicate complex concepts to business users at all levels in the organisation.
• Knowledge of governance, risk and compliance principles and practice, with experience of managing IT security policy.
• Working knowledge of information security frameworks such as ISO27001, NIST, and CIS
• Experience of securing cloud-based infrastructure, applications and online services.
• Demonstrable knowledge of secure software development principles, including the OWASP Top 10 and the SANS Top 25.
• A deep and broad understanding of network, perimeter and platform security best practices and security trends • Knowledge of security risk management, threat analysis, control design and implementation

What you need to do now
If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now.
If this job isn't quite right for you but you are looking for a new position, please contact us for a confidential discussion on your career.