Head of Information Security - Manchester

Job Description

Reporting to the Chief Digital Officer, the Head of Information Security provides direction to the technical controls, monitoring, and robustness of the groups infrastructure. The Head of Information Security is responsible for the companys security strategy,and will be required to engage with key stakeholders to ensure our systems are well protected, monitored, and governed in alignment with internal policies, Legal, Compliance and client requirements.Client DetailsA rapidly growing Technology company with an international presence and a market leading product suite. The organisation is well funded and will provide a clear opportunity for career progression.Description

• The successful candidate will have an appetite to keep up to date with the latest trends, technologies and threats, as well as a wealth of experience operating in a similar role. Key areas of responsibility include:
• Responsible for providing information security monitoring, architecture, and engineering leadership
• Ownership, development and delivery of the Information Security strategy both in the near and long term
• Build on established processes, monitoring and response mechanisms to further embed the security function across the group
• Maintain SOC 2 compliance across all 5 trust principles
• Maintain and align requirements pertinent to GDPR, HIPAA, CCPA, NIS2, and similar regulations
• Serve as interlocutor between technical and non-technical teams including presenting to the C-Suite where required
• Apply technical expertise and knowledge to get involved in triage and resolution of threats, querying systems and investigating issues that may affect the wider group security
• Establish a comprehensive security incident management framework and lead on tabletop and practical exercises against likely incident scenarios faced
• Build out the IT security function providing leadership, vision, and direction to those direct reports
• Managing threats and vulnerabilities associated with companys core product suite and large infrastructure across both Azure and AWS, alongside BAU and Development networks
• Lead forward the security requirements across all products, Dev CI/CD pipelines and future architectures
• Engage with clients, addressing security concerns, issues experienced
• Support sales the sales and renewal cycle by completing client RFIs
• Continually support the evolution of processes to streamline security monitoring, response, and triage, as well as through the deprecation of legacy systems where appropriate
• Manage the data security requirements across our large and varied data holdings

ProfileEssential experience required:

• Microsoft Azure and/or Amazon Web Services management (ideally Azure)
• Microsoft Azure security suite and associated tooling
• IaaS management inc. High Availability, Scalability and Disaster Recovery

Non-Technical Essential

• Working with geographically distributed teams
• Supporting commercial teams in bid tenders, reviews and cost models
• Strong teamwork ethic, open to sharing knowledge and promoting growth
• Experience working in a change controlled environment
• Producing high-quality externally published documentation

Non-Technical Highly Desirable

• Experience working in a high growth tech organisation
• Experience working in a SOC2 accredited organisation

Job Offer

• An attractive salary and package, anywhere from £100-£130k will be considered. Potentially more for the right candidate. + Package.
• Hybrid working
• Superb office and working environment, collaboration days in the office are expected and is generally once per week
• Work with extremely smart individuals
• Urgent role