Head of Security - Maidenhead, United Kingdom - Logicalis

Logicalis
Logicalis
Verified Company
Maidenhead, United Kingdom

2 weeks ago

Tom O´Connor

Posted by:

Tom O´Connor

beBee Recruiter
Description

INTERNAL ONLY
- _


Role Summary

Role Title:
Head of Security & Compliance

Reports to:
VP, Group Services, Governance and Improvement

Additional details:
Full time, permanent position, FSLA Status: Exempt for overtime.


Summary
***The SGI - Head of Security and Compliance at Logicalis plays a crucial role in ensuring the consistent and effective performance of Logicalis' internal security risks and compliance. The primary focus is on optimizing the operation and management of Logicalis' security systems. This involves supporting the transformation of regional operations into an integrated and optimized security framework, aligning with industry best practices.

The key objectives of this role include enhancing the Security Posture and Controls Maturity by managing risk and surfacing exposure areas, streamlining security processes, and improving the governance structure.

The overarching goal is to eliminate duplication and waste in security operations and driving efficiency with automation.

The Head of Security and Compliance actively monitors, measures, and directs regions to take necessary actions in closing security control gaps and implementing improvements.

This involves inputting security control analysis, improvement actions, and their status into actionable recommendations. Additionally, the role leads to the renewal of Azure Expert certification.

Furthermore, the role tracks ISO certifications status across the regions, who are accountable to conduct ISO certifications, and acts as advisor and consultant to ensure compliance with established ISO 27001 standards and policies across regions.

The role actively coordinates and leads ISO certification across the CTO area with a focus on the DFP platform. The role leads the Security Incident process in relation to Global Tools and DFP platform.
Through these efforts, this role contributes to maintaining a robust and secure environment for Logicalis' operations.


Essential Duties and Responsibilities

  • Lead development and improvement of security policies, procedures, standards and guidelines across the organization, in line with industry relevant regulatory requirements and recommended practice (e.g. ISO 27001, NIST Cyber Security Framework)
  • Maintain consistent Compliance reporting via the SGI Dashboard portal
  • Develop security and compliance strategy and roadmaps related to security controls maturity.
  • Produce and deliver recommendations and tactical plan for region execution.
  • Contribute to and drive effective security risk discussions and processes, to manage cyber and data risk across Logicalis entities
  • Support third party security risk assessment processes to ensure data security requirements are included
  • Contribute to the delivery of data security education and awareness programs across the enterprise
  • Develop timely and informative security posture insights and metrics, to inform effective cyber reporting and decision making.
  • Lead various security control assessment and operational activities.
  • Collaborate crossfunctionally across country boundaries, and provide active support to other areas within security and governance teams
  • Lead compliance / certification audit programs (ISO 27001 and Azure Expert)
  • Lead Security Incident Management Process for Global Tools and DFP platform

Supervisory Requirements:

This job currently has no supervisory responsibilities.


Job Requirements:


Qualifications:

To perform this job successfully, an individual should be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.


Education/Experience/Technical Requirements/Certifications:

Equivalent combination accepted.


Education

  • Bachelor's degree in information security, Computer Science, or related field.
  • Master's degree or relevant certifications (CISSP, CRISC, CISM, CISA) is highly desirable.

Experience / Technical Requirement

  • Proven track record in executive leadership within Information Security and Compliance, ideally in a complex MSP environment.
  • Deep expertise in security best practices, risk management, and regulatory compliance frameworks in a global environment.
  • 5/10+ years of experience in cyber security governance and/or compliance including Microsoft Azure solutions
  • Must come from large enterprise environment due to global stakeholder engagements.
  • Knowledge and understanding of analytical methods used to measure and communicate key security controls and performances metrics (KPIs).
  • Exceptional strategic thinking, communication, and interpersonal skills to be able to engage various stakeholders and drive outcomes.
  • Successful history of collaborating with crossfunctional teams and external stakeholders.
  • Experience with enterprise security architecture, securit
More jobs from Logicalis
See all jobs of Logicalis