Senior Security Consultant (CISO)

Location:
England
Job Type:
Permanent
Industry:
Cyber Security
Job reference:
BBBH219380_1701683927
Posted:
over 1 year ago

Senior Security Consultant (CISO)

Location - UK wide

Salary - £70,000 - £80,000 + Excellent benefits

Key Skills - CISO - GDPR - NIST - CISSP - ISO27001 - PCI DSS - CISM - CRISC - Cyber Security


Primary Job Responsibilities

Strategic Leadership:

  • Set direction and formulate a cybersecurity strategy that aligns with the client organisation's goals, risk tolerances and appetite.
  • Drive the adoption of cybersecurity best practices across the client's organisation.
  • Engage with the client's executive leadership to ensure that cybersecurity initiatives are in harmony with their business objectives.
  • Conduct periodic management reviews and provide insights through reports and dashboards.



Key Deliverables and Outcomes:

  • Comprehensive Cybersecurity Strategy Documents showcasing objectives and initiatives.
  • Regular CISO Dashboard Reports highlighting key performance metrics.



Risk Assessment & Management:

  • Identify and assess cybersecurity risks.
  • Review critical technology to understand vulnerabilities and threats
  • Measure the maturity of current cybersecurity initiatives and provide improvement planning on how these risks are remediated once treated.
  • Oversee the client organisation's risk management processes, including risk assessments, technology reviews,

Requirements

Experience:

  • Leadership Experience: A proven track record in leading and managing cybersecurity projects and functions, with an emphasis on strategy formulation and implementation.
  • Risk Management: Experience in identifying, assessing, and mitigating cybersecurity risks across diverse IT and system landscapes.
  • Policy Development: Demonstrable experience in creating, implementing, and maintaining cybersecurity policies, standards, and procedures.
  • Stakeholder Communication: History of successful engagement with executive leadership and other key stakeholders.
  • Tactical Execution: Hands-on experience in areas like system enhancement, supply chain security, and internal auditing.
  • Crisis Management: Experience in handling and responding to cybersecurity incidents, with a focus on resilience and business continuity.
  • Business Continuity: Design and develop business continuity strategies and operational plans to complement the incident and crisis management practices within a business.



Technical Knowledge:

  • Cybersecurity Frameworks: Deep understanding of industry frameworks such as ISO27001, NIST CSF, and PCI DSS.
  • Risk Management: Proficiency in risk management frameworks and methodologies.
  • Governance & Compliance: Understanding of global and regional cybersecurity regulations and standards.
  • Threat Intelligence: Familiarity with threat intelligence platforms and ability to interpret and apply threat data.
  • Disaster Recovery: Experience in disaster recovery and business continuity planning.
  • Data Protection: Good knowledge of GDPR and other privacy laws in order to supplement the security protections required in a data privacy environment



Back job search
Back to Search Results