Director of Cyber Security

Director of Cyber Security

Birmingham, Hybrid (2-3 times a week)

Very Strong Salary, Car, Bonus, Health & Package

An international market leader (multi-£bn revenue, multiple business units, 8k+ employees) is recruiting a Director of Cyber Security to work alongside the Group CIO and business leaders to define and implement the Cyber Security strategy and deliver the associated controls and processes.

The Director of Cyber Security will be responsible for the leadership of cyber risk and effective reporting to the Board and exec both in the UK and internationally. Operationally, you will be responsible for all Cyber and GRC policies, including, but not limited to, owning the security operations, cyber incident response capability, risk management, Security Architecture, and controls.

It is a hugely exciting time to be joining this profitable and forward-thinking business, with diverse product offerings and a board/exec which is engaged in the company’s Information Security posture. This would be the ideal opportunity for a Head/Director of Cyber or InfoSec looking to take the next step in their career with a well-recognised international business which takes information security seriously.

It should be noted that we are looking for security leaders who have strong, in-depth cyber knowledge around contemporary threats, enterprise cyber architecture, zero-trust etc., rather than an exceptional strategic leader who delegates most of the detail to their team and partners.

Sought Experience

• Proven track record gained as Head/Director of Information Security for a large, complex business.
• Must be able to set cyber security strategy in key elements including zero-trust, identity management/IAM, SOC/SIEM, cloud security, and breach and attack simulation. As you may be able to tell, the client are keen to appoint someone with a string technical understanding of the cyber landscape.
• Knowledge of latest cyber risks and modern mitigation techniques. Familiar with Mitre Att&ck framework and analysis of common attack vectors.
• Must be experienced in setting and implementing technical, organisational, and governance strategy and making it happen in practice.
• Career progression which has developed a strong knowledge-base across both technical security and GRC.
• Demonstrable experience of governing cyber security risk, with a knowledge of the very latest cyber risks and mitigation methods.
• Track record of shaping and executing projects to implement complex security frameworks and controls.
• People leader who has built, led, and coached Information Security teams, whilst also utilising specialist 3rd party resources.

Hybrid role, with a likely requirement to be onsite in their office (just south of Birmingham) 2-3 times a week. There may also be the need for some infrequent international travel.