What is a director of information security?

1. Home

You can not apply for this job as its status is Closed.

• Save
• Email

Introduction

Become a Director of Information Security for an innovative financial technology company who specialise with the world of blockchain.

Important

Senior Information Security Leadership, Enterprise Security Management, Design, Compliance, Stratagy, Degree/Masters, Security Engineering

The Job

I am seeking a Director of Information Security to join an exciting financial technology who have raised £24,000,000 in investment due to their unique product and service offering.

I am looking for very experience professional that will be responsible for establishing and executing information security program directives, policy development, and policy enforcement. This position will develop mechanisms to best identify, evaluate, and mitigate district-wide information security risks in a manner that upholds compliance and regulatory requirements.

The Director of Information Security will be held accountable for the following responsibilities:

• Establish and execute strategic, comprehensive enterprise information security program directives and plans, including any and all district-wide information security training efforts to ensure that the confidentiality, integrity, and availability of information is owned, controlled or processed in a manner compliant with Board Policy and relevant regulatory authorities.
• Develop and maintain information security policies, standards, guidelines and oversee the dissemination of security policies and practices; identify knowledge gaps to increase district awareness of relevant information security practices.
• Provide leadership and guidance on information security topics, advising and collaborating on security processes, business continuity, and disaster recovery plans.
• Ensure that system and application security design is in accordance with Board Policy; consult with IT teams to ensure that security is factored into the evaluation, selection, installation, and configuration of hardware, applications and software.
• Lead investigations of any actual or potential information security violations and manage escalation of security events.
• Monitor external threat environment for emerging threats and advise relevant stakeholders on appropriate courses of action.
• Provide regular reporting on current state of information security program to the CIO and others senior managers as appropriate.
• Establish metrics and reporting framework to measure the efficiency, effectiveness, and maturity level of the program.
• Liaise with relevant business units (such as Internal Audit, Law, Finance, Safety & Security, Risk Management, HR teams), and external agencies as needed to ensure that the company maintains a strong security posture.
• Work with system administrators and application developers to audit, monitor and validate their environment's security, including conducting gap analysis and other comprehensive internal assessments of existing systems to improve the security infrastructure and mitigate risks.
• Provide oversight to the architecture and engineering of new security systems; including the evaluation of technical designs.

Knowledge, Skills, and Abilities:

• Minimum of seven (7) years' experience in information technology field, with five to seven years of experience in an information security role.
• Three to five (3-5) years' experience in engineer role and hands on work experience in information security.

• Proven track record and experience in developing information security programs, policies and procedures, including successful implementations in medium to large enterprise environments.
• High degree of initiative, dependability; experience managing multiple, simultaneous, and high-profile information security initiatives and responses.
• High level of personal integrity, as well as the ability to professionally handle confidential matters, and show an appropriate level of judgement and maturity.
• Strong knowledge of common information security management frameworks, such as ISO/IEC 27001, COBIT, NIST, CSA and deep knowledge and understanding of relevant legal and regulatory requirements/standards, including but not limited to: GDPR, PCI-DDS and other relevant compliance standards.
• Experience in designing and managing new and existing security systems.
• Ability to advise infrastructure and applications staff in securing their respective environments.
• Exhibit strong written and verbal communication skills, interpersonal and collaborative skills.
• Strong ability to convey security information to non-technical end-users in a way that inspires adoption and adherence to all IT and Board security policies and programs.
• Experience with contract and vendor negotiations.

Networkers acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers and is part of Gattaca Plc.

Gattaca Plc provides support services to Networkers and may assist with processing your application.

You can not apply for this job as its status is Closed.

• Save
• Email

Apply

Related jobs

Related articles

• An education in cyber security

  on 04 April 2017

  Jonathan Martin, Cyber Security & Cloud Department Manager, Networkers, recently shared his thoughts with technology pub...

• 6 things IT professionals need to know about GDPR

  on 25 May 2017

  Just over a year ago and just after the details of the new legislation were announced by the European Parliament, we wrote a...

What are you looking for most from your next employment or assignment?

What skills are required for a security director?

What does a VP of information security do?

What is a cyber security director?