Head of Cyber Security

at  Vodafone

CORE COMPETENCIES, KNOWLEDGE AND EXPERIENCE:

• Experience in defining and implementing Cyber Security strategy
• Experience in managing complex Cyber Security teams
• Hands on experience in managing and responding to cyber security threats and incidents
• Excellent leader of people with ability to engage and inspire
• Ability to explain complex security matters in simple business language
• High integrity and a desire for open and transparent risk management
• Deep knowledge of Cyber Security threats and capability to assess business impact
• Decision making skills with the ability to balance conflicting interests
• Strong collaboration skills harnessed towards delivering the right outcomes for Vodafone and our customers
• Degree, professional qualification or relevant experience in Technology Security
• Technical capability and knowledge as SME for Security in IT and Networks at level of an industry leader

KEY ACCOUNTABILITIES AND DECISION OWNERSHIP:

• Drive implementation of Cyber Security strategy, cyber security baseline and align to local priorities
• Manage Cyber Security Risk in line with Vodafone and local market tolerance
• Deliver cyber security improvements and projects in the market to make sure controls are effective
• Responsible for managing local security incidents to minimise the impact to local market customers, services, data and people
• Proactively manage and maintain local certifications
• Understand local security laws and regulations to make sure they are embedded into policy and controls
• Lead a proactive spear of the business to advise and develop security solutions – secure by design products and services
• Regular and transparent security risk reporting to the Technology leadership, Executive Committee and local audit risk committee
• Build strong and effective relationships with Corporate Security, local security authorities and key business stakeholders
• People leadership for the local cyber team

The Head of Cyber Security Czech Republic is accountable for leading all cyber security activities for their market, including acquisitions, subsidiaries or second brands. They will align global cyber security risk reduction delivery with local market business and technology priorities. They will support the global cyber security strategy as well as the local technology strategy implementations. Their primary role is to make sure the global cyber security strategy is effectively implemented in their local market and cyber risk is managed within tolerance.
They will report to the Head of Cyber Security Europe Cluster and be an active part in the Cyber Europe Cluster leadership team. They will support the EU Cluster projects and Cyber CoE (Center of Excellence) workstreams and projects, and they will lead some of these cross market projects on behalf of the rest of the team. They will also have an active role also in the local Digital & IT, Network and VBPS leadership teams, ensuring security is embedded in all technology related programs and activities. They will understand business priorities and be able to get the right balance between local and global strategy delivery. They will also have good understanding of local regulation on cyber and manage local priorities to ensure regulatory requirements are met.
They will have experience of leading a cyber security team and be able to role model excellent leadership skills. They will build excellent trust relationship with the relevant ExCo members and leaders in their market, showing strong understanding of the local business priorities and challenges, and demonstrating influence and negotiating skills to seek the right balance between different risks.
The role holder will be responsible for transparent reporting to the local market Executive Committee and Local Audit Committee. They will also be responsible for efficient collaboration with local structures such as Corporate Security, Privacy, Legal, VBU, among others. Outside Vodafone, they will also be the appointed local contact for formal interactions with national structures such as the National Cyber Security Centre and they will be expected to develop trust relationships with other industry peers in the country.