Associate Director Infosec - Oxford, United Kingdom - Oxford Nanopore Technologies

Oxford Nanopore Technologies

Verified Company

Oxford, United Kingdom

2 weeks ago

Posted by:

Tom O´Connor

beBee Recruiter

Description

Oxford Nanopore Technologies is headquartered at the Oxford Science Park outside Oxford, UK, with satellite offices and a commercial presence in many global locations across the US, APAC and Europe.

Oxford Nanopore's sequencing platform is the only technology that offers real-time analysis, in fully scalable formats from pocket to population scale, that can analyse native DNA or RNA and sequence any length of fragment to achieve short to ultra-longread lengths.

Our goal is to enable the analysis of any living thing, by anyone, anywhere

We are looking for a highly motivated Associate Director of Information Security Architecture, Risk and Compliance to join our busy Enterprise Architecture Team.

Job Summary

Protecting the key assets that in turn, protect the value of the business
Design a cyber security offering that's frictionless and flexible for the entire ONT digital
Be business focussed and adaptable for the spread of ONT's global customers
Build a strategy based on ONT's values with data driven investment

Key Responsibilities

Work alongside Global IT Services and across ONT to ensure secure practices and changes, and implementation of secure builds in accordance with the InfoSec policies and standards.
Advise VP Information Technology on architecture improvements: changing vendors, enhancing services and identifying solutions, generating monthly metrics reports and using these to inform risk decisions.
Lead behavioural change programme, ensuring ONT staff are knowledgeable and skilled to detect and report threats, inclusive of: monthly awareness and threat reports, simulated phishing, annual training and induction training.
Collect from numerous sources, analyse and distribute threat intelligence to affected IT groups and staff as required, inclusive of: relevant vulnerabilities being exploited in the wild, credential thefts from third parties, and breaches and attacks in thesupply chain.
Lead the ISMS management and maintain ISO27001 compliance with internal and external audit, updating the policies, standards and procedures and ensuring processes are effective.
Lead the BCMS management and maintain ISO22301 compliance. This entails exercising the crisis management team, leadership and operational teams in their continuity and ensuring IT backups are regularly tested across the internally developed and enterprisesystems.
Manage supply chain security, assessing third party suppliers and undertaking risk management of any apps or systems being introduced.
Build the cloud security skills and maintain cloud security configuration baselines across AWS, Azure and OCI, working across DevOps teams.
Lead vulnerability management programme, inclusive of third party PEN tests, internal technical control assessments, and developing the blue team and threat hunting capabilities, informed by threat intelligence capabilities.

What we are looking for:

Essential:

CISSP or CISM
Assess threats, manage risk and assess security controls in order to inform business investment
Design and implement riskinformed road map of an InfoSec programme that supports the users and ensures productivity
Staff training, awareness and behavioural change
Data privacy advisor as Deputy DPO
Business Continuity Management system development, exercising and testing

ISO 2700

ISO 2230
NIST 8005
Cyber Essentials
Current market offerings for security solutions
GDPR and DPA 1
Cloud Security

Desirable:

SABSA
CompTIA Security+
CIPP/E
Security architecture principles and designs, including zero trust, data loss prevention
SOC Manager Cyber forensic investigations and evidence handling
Security for ICS (operational technology and IoT)
Lean and 6 Sigma
CIS 20
NIST CSF

ISF IRAM

COBIT (ISACA)
HIPAA

We offer outstanding benefits to include an attractive bonus, generous pension contributions, private healthcare and an excellent starting salary.

Based within beautiful, landscaped surroundings with tree-lined walks, water features and a lake, all of whichmake for a wonderful working environment.

li-jc1