Head of Cyber Security

Head of Cyber Security

We are working with a County Council in the Midlands who require the interim assistance of a Head of Cyber Security to play a vital role in designing, enabling and delivering the Cyber Security plan and approach for the council

Purpose

• The Head of Cyber Security will be the council's first senior dedicated Cyber Security resource.
• The Council are looking for a leader and driver with the capacity to tackle complex security issues, with many public and private sector partners

Details

Start: End of March 2023

Rate: GBP750 per day (IR35)

Duration: 6 – 12 months (subject to extension possibilities)

Role Responsibilities

• Define and implement the cyber security strategy, roadmap and security improvement plan
• Assess the Cyber Security landscape and existing threats, vulnerabilities, and defences
• Drive a programme for the remediation of security vulnerabilities and improvements through partner delivery teams
• Take the lead for regular security health checks
• Provide expert advice and guidance on all cyber security related matters and ensure the wider technology teams are engaged and supported
• Manage and drive the security risk register
• Ensure suppliers and vendors are appropriately assessed against our security controls frameworks and comply with our security standards and any certification claims
• Promote a culture of secure by design and left shift security throughout project development lifecycle and delivery processes
• Support the agenda for a cloud first strategy and ensure any cloud solutions meet our security aspirations and requirements
• Take responsibility for incident management and lead our response to cyber security events, incidents and potential breaches
• Ensure our suppliers adequately monitor the IT estate for threats and alerts and are capable of responding to issues

Role Requirements:

• Possesses relevant and current industry qualifications and certifications (e.g. CISM, CISSP).
• Educated to degree level in a relevant technical area or equivalent industry experience
• Security domain specific experience showing progression through a number of roles with increasing responsibilities
• Strong technical leadership, stakeholder management and communication skills
• Experience of working through matrix management of multi–disciplinary teams in complex infrastructure environments
• A strong technical background across Networks, Security, Firewall, Vulnerability Management, SIEM and EDR technologies
• Experience with cyber security concepts, such as Threat Modelling, Incident Response, Penetration Testing (external /internal)
• Advanced knowledge of cloud products and services e.g. Azure, Microsoft 365

If you meet the above–mentioned criteria, we would love to hear from you. Please apply to receive more information.

At Venn Group, we endeavour to respond to all applications. However due to the volume of applications we receive, if you have not heard from us within 48 hours please assume you have been unsuccessful on this occasion.