No more applications are being accepted for this job

Cyber Security - Cardiff, United Kingdom - Sanderson Government & Defence

Sanderson Government & Defence Cardiff, United Kingdom

1 month ago

Description

Cardiff ( hybrid 2/ 3 days per week on site ) Up to £90,000 + benefits

My client, a leading financial services provider based in Cardiff are actively looking for a Head of Cyber Security to join their small team.

This would be an exciting role for someone who has had exposure to all areas of information and cyber security but looking for a step up into a Head of Cyber Security role.

Manage and maintain the Information Security Policies and Procedures (ISMS), ensuring they are reviewed and updated at least annually.

Manage and maintain the Cyber Security Incident Response Plan and associated scenario playbooks, to ensure they are regularly tested and updated.

As a member of the Executive Risk Committee, to report on the overall IT & Cyber Risk Appetite Measures and Key Risk Indicators with accompanying commentary and recommendations to ensure stakeholders are aware of the current risks and have the information necessary to make decisions.

As an active member of the Change Board, to apply the Cyber Security lens to prospective business changes.

Develop, maintain, and deliver an annual cyber security plan that sets out the key focus areas for the next 12 months based on the changing threat landscape faced by the firm, and prioritising efforts to ensure the controls are commensurate with the risks.

Chair the Information Security Working Group to manage InfoSec risks and discuss Cyber related activities.

Provision of training and awareness content (communications, and LMS courses) to engage and educate the organisation about cyber and information security risks and obligations.

Ensure penetration testing and social engineering testing are conducted at least annually, and for penetration testing after any significant system change that warrants a re-test.

Ensure the Cyber RCSA is maintained and controls testing is up to date.

Operate, monitor, and report on Cyber Security controls, ensuring that they are operating in compliance with the documentation and monitoring plans.

Provide security oversight of new IT systems, or changes to existing systems, to ensure cyber security is adequately factored in at the solution design stage.

Investigate Cyber Security incidents that arise within the organisation.

Responsible for all Cyber Security audits undertaken by 3rd party stakeholders, coordinating audit activities, managing responses and closing out issues identified.

To work closely with the DPO to ensure alignment of Cyber Security and Data Protection.
Fields marked with an asterisk (*) are required
com you agree to our terms and conditions and privacy policy.

As part of the job finding service we provide, we will send you relevant news and information via email.

You should never be required to provide bank account details.