Head of Tech Security
- Recruiter
- PSD Technology Contracts Ltd.
- Location
-
Birmingham
West Midlands RegionUnited Kingdom
- Salary
- 85000.00 - 90000.00 GBP Annual + car allowance
- Posted
- 19 Jun 2021
- Closes
- 22 Jun 2021
- Job Title
- Director
- Category
- Information Technology
- Contract Type
- Permanent
- Hours
- Full Time
The key purpose of this role is to provide the technical leadership and subject matter expertise to guide the design, implementation and ongoing operation of the systems and services used by the client to provide security-enforcing functions.
This role spans Security Architectural Design' and Security Operational' activities, and will provide technical leadership of functions within the Security Tower and support wider design and bidding activities across the business.
The role will report directly to the Director of the Security Tower. As a Senior role, the individual will be self-motivated, able to work with autonomy, and will take accountability for the broad scope of deliverables. The role will be required to manage relationships with and influence senior stakeholders (both internal and external) and will provide technical leadership, coordination of activities, and mentoring for other Security Operations Staff (including L3 Security Operations Centre Analysts, Vulnerability Specialist, and Security Tools Specialist
Key Accountabilities
- Technical security leadership within the client Security Tower, including the Security Operations Centre.
- Develop and maintain a target security architecture for the client corporate IT systems, and maintain oversight of all IT projects and change initiatives, advising the Director Security of any divergence from the target.
- Responsible for providing assurance, management and control of operational security on behalf of the Director of Security.
- Security review and analysis of proposed changes to operational services, and guidance on likely impact, mitigations, alternative strategies, etc.
- Identifying and reporting systemic weaknesses in control effectiveness.
- Engagement with external audit and assurance providers, including IT Security Health Check suppliers, scoping test plans and helping stakeholders interpret the results of the tests and audits, as well as supporting the implementation of any remedial actions, where required.
- Working with the Director of Security, development of a technical security strategy/roadmap for the Security Tower, working with technical and business stakeholders to ensure adoption and consistent application.
- Mentoring and training/awareness for other members of the Security Tower.
- Input/control of the Information Security Risk Register ensuring that all known risks are appropriately assessed
- Providing direct line management for a team of Security Analysts and Security Specialists.
- Direct responsibility for the Vulnerability Management Service and to help coordinate the remediate in order to help maintain CES + certification.
- Production and management of the Security KPI's including driving improvements of the KPI's
- Help to drive the Security Operations Performance and ensure that the monitoring and detection is appropriate.
Essential key skills
- The candidate should have a broad Information Security knowledge, with a deep and current technical understanding of security relating to applications, infrastructure and cloud services. Excellent communications skills (written and oral) are essential, as is detailed knowledge and practical experience of security-enforcing technologies (Firewalls, SIEM tools, Identity and Access Management, etc.).
- Certified Information Systems Security Professional (CISSP) and Certified Cloud Security Professional (CCSP) qualifications would be advantageous; however, proven practical experience working with technical and architectural security are more important than specific qualifications.
- Strong Operational Experience, with demonstrable experience in leading technical/operational security functions or programmes.
- Experience in Managing a Team.
- Strong Communication skills both verbal and written.