European Head of Information Security & Risk

Greater London
Competitive package
26 Nov 2018
10 Dec 2018
FMCG / Retail
Contract Type

Our client, a FTSE100 organisation based in the Home Counties, is seeking a Head of Information Security & Risk. The role is a newly created position reporting to the Global CISO with ownership of the European information security and risk agenda, engaging local BU managing directors and senior leadership teams aligning local market needs across the countries to corporate standards, creating high levels of buy-in and bedding-in robust information security governance and ensuring strong adoption across Europe.

Key Responsibilities:

  • Advise country senior management on information security matters and input to Group Information Security Strategy on behalf of the European businesses
  • Understand and interact with functional teams to ensure the consistent application of policies and standards across technology projects, systems and services, including privacy, risk management, compliance, resilience and business continuity
  • Drive effective teamwork, collaboration and commitment to continually improve the security posture, driving employee awareness and raising the profile of IT security
  • Build and nurture a pragmatic implementation-focused security capability, developing and nurturing individuals and capability
  • Develop, implement and maintain appropriate levels of security and resilience of information assets in line with Group strategy
  • Implement and govern a pragmatic framework for POS controls, general IT controls, GDPR and other data protection frameworks
  • Work effectively with the businesses to assess, manage and minimise risk, and ensure that risk ownership is clear
  • Implement appropriate security governance structures within the businesses and lead the regional security governance forum
  • Standardise information security metrics in each business and produce aggregated regional information security reporting
  • In the event of a major controls failure or breach, own and lead the regional crisis management process and liaise with the overall Group crisis management leads

Experience / Skills:

  • Previous experience of information security leadership, ideally in an international organisation
  • Depth of knowledge of Information Security standards, tools and processes with a good understanding of GDPR, COBIT, ISO27001, PCI DSS and Risk Management frameworks
  • Familiarity with industry leading security products and solutions, particularly in cloud environments
  • Practical, real-life and hands-on experience of security technologies, crisis management and Business Continuity Management
  • CISSP, ISO27001 Lead Auditor, CISM or CISA qualified
  • Member of Institute of Information Security Professionals (M.IISP) preferred

Personal Profile:

  • Tactful and diplomatic, with a low ego and high emotional intelligence
  • Strong interpersonal and communication skills; able to deal effectively with diverse personalities
  • A good team player with the ability to work flexibly and function effectively in a matrix structure.
  • Effective at navigating ambiguity and low maturity levels with a self-starter approach and hands-on action orientated
  • Able to operate comfortably at management and executive level
  • Strong facilitation, negotiation and conflict resolution skills
  • Strong analytical skills

Please Note: Due to the high volume of applications we receive for posted roles, unfortunately we are unable to respond to each and every applicant. If we have not been in contact within a week, please assume you have not been successful on this occasion. We thank you for your continued interest in working with Eton Bridge Partners.

For more information about this excellent opportunity and if you meet the criteria, please submit your details without delay and quote Ref: BF897580

Similar jobs

Similar jobs