CISO

Location
Job Type Permanent
Salary Very Attractive
Reference 31884

What you will be doing....

About the role

A fantastic opportunity to join an innovative and progressive iGaming company in a pivotal, brand new, highly visible leadership role with scope to build a security team around you.

You'll enjoy implementing security processes and procedures within working with a multi-national wealth of talent that includes Architects, Developers, Engineers and external Security Companies for business technology planning. Your challenge will be to develop and oversee technical and process security initiatives to implement what is needed to prevent security threats and risks.

As the Chief Information Security Officer, you will provide a clear vision and direction for information and Cyber Security operations. You will provide a framework to balances risk and scaling of business operations while being pragmatic balancing the needs of the Company vs security.

 

Your Profile

An appropriate degree, equivalent qualification, or experience

One or more of the following qualifications are highly desirable:

  • Certified Information Security Manager (CISM)
  • Certified Information Systems Security Professional (CISSP)
  • Certified Information systems Auditor (CISA)
  • MSc Information Security

Achieved Senior or Lead level certification in the NCSC’s Certified Cyber Professional scheme in one or more of Security and Information Risk Advisor (SIRA), IA Architect, IA Auditor, IT Security Officer

Membership of the Institute of Information Security Professionals

Prince 2/PMP

You will...

  • Define, develop, and maintain a business-aligned Information and Cyber Security strategy and operations
  • Work with the broader business on Disaster Recovery and Business Continuity plans
  • Evaluate and implement Data security and protection schemes and procedures
  • Define Security, Risk Management and Incident management policies and procedures.
  • Work with development teams to ensure secure coding practices
  • Work with software architects and developers to implement a secure development lifecycle to monitor for vulnerabilities with in-house application and service
  • Contribute to system design and protection against potential attacks
  • Define Information and Cyber Security Strategic Direction
  • Advise senior leadership team on integration of security practices necessary for a successful strategy implementation
  • Analyse and review new security technologies and practices in the market and apply those needed for the company´s Cyber Security plans.
  • Foster a culture of innovation and continuous improvement that encourages, engages, and supports a high level of professional and personal development.
  • Liaise negotiate with service providers and consultants ensuring the company can anticipate, meet and respond to new Information and Cyber Security challenges and trends.

 

Information and Cyber Security Management

  • Provide senior leadership and oversight of effective information and Cyber Security risk management, integrated with the company’s risk management framework
  • Ensure that information and Cyber Security risks to the company presented through suppliers and delivery partners are identified and managed appropriately
  • Ensure Information Security is managed effectively throughout the IT service delivery lifecycle (inc. Security Operations, Security Architecture and Security Assurance)
  • Lead on development and delivery of measures and metrics to support the assessment, reporting and ongoing improvement of the information security posture
  • Work closely with internal stakeholders and business units to keep abreast of planned changes to technologies, working practices, and business activities that could have an impact on the Company’s Information Security or risk profile
  • Define and implement an appropriate information assurance framework for the Company, enforcing compliance with policies in conjunction with internal audits
  • Promote an appropriate level of information security culture and awareness across the Company
  • Working with Security Partners to both direct and assist as necessary, investigations into information security breaches and pursue associated disciplinary and legal matters, liaising with Security partners team on data protection legislation ensuring root-causes of such breaches are both understood and addressed

Competencies

  • A collaborative leader with strategic acumen and problem-solving skills, able to inspire and motivate colleagues
  • Able to work within a regulatory framework and to articulate its potential as a tool for continuous improvement
  • Demonstrable creativity and a commitment to future-proofing service and delivery in a fast paced, ever-changing environment
  • A Self Starter with the ability to lead and drive change through an organisation
  • Excellent communication skills, both written and verbal. Ability to present complex or highly technical issues in simple and easy-to-understand formats
  • The ability to be pragmatic while balancing the needs of the Company against security

 

Knowledge and skills you need to have

  • 10 years of experience in a large, geographically distributed organisation in a CISO role
  • Experience
    • A track record in the management and delivery of transformational security improvements across an organisation
    • A track record in directing and managing innovative change and continuous improvement, ensuring excellent organisational performance and outcomes across a complex portfolio of responsibilities
    • Experienced in leading, developing and motivating a team of subject matter experts
    • An excellent understanding of best practice within Information Security and risk management including standards such as ISO/IEC 27001, Cyber Essentials, etc.
    • An understanding of current and emerging threats and countermeasures and the organisational challenges to addressing these threats
    • A through knowlede of Application Security threats and countermeasures and the OWASP top 10
    • A good practical knowledge of security technologies and wider business solutions including Firewalls, IDS/IPS, Identity and access management, SIEM, remote working and Cloud technologies (Citrix).
  • An appropriate degree, equivalent qualification, or experience
  • Membership of the Institute of Information Security Professionals
  • Prince 2/PMP or equivalent
  • Achieved Senior or Lead level certification in the NCSC’s Certified Cyber Professional scheme in one or more of the following:
    • Security and Information Risk Advisor (SIRA),
    • IA Architect,
    • IA Auditor,
    • IT Security Officer

Bonus points for the following

Qualifications, not essential but " nice to have".

  • Certified Information Security Manager (CISM)
  • Certified Information Systems Security Professional (CISSP)
  • Certified Information systems Auditor (CISA)
  • MSc Information Security

Why choose us?

We will give you the opportunity to be the best version of yourself, develop professionally and create strong working relationships working remote or on site. While offering a competitive salary, we also invest in our people's professional development and want to see you grow and love what you do. We are dedicated to listening to our team's needs and are constantly working on creating an environment in which you can feel at home.... If this sounds like the place for you, contact us now!

 

Apply Now