Information and Cyber Security Director

at  Global Switch

ABOUT YOU:

You are a seasoned security professional with a deep understanding of information and cyber security. Your proactive and strategic mindset enables you to anticipate threats and design robust security measures. You possess exceptional leadership and communication skills, which empower you to effectively manage teams and engage stakeholders across all levels of the organisation.

KEY REQUIREMENTS:

• Proven experience in a senior information or cyber security role within a complex organisational structure.
• In-depth knowledge of security frameworks, policies, and compliance standards such as ISO/IEC 27001, NIST, GDPR.
• Demonstrated experience in threat intelligence, vulnerability management, and incident response.
• Exceptional problem-solving skills with the ability to devise innovative solutions to complex security challenges.
• Strong ability to communicate security-related concepts to a broad range of stakeholders.
• Leadership experience with a track record of building and developing high-performing teams.

ABOUT THE ROLE:

An amazing opportunity to join a global Data Centre business as Critical National Infrastructure to set the strategy and manage Information and Cyber Security across the full business and all Data Centre locations.
As the Global Head of Information & Cyber Security, you will be responsible for implementing and overseeing a range of technical and process security controls and leading a programme of continuous improvement in response to a rapidly changing threat landscape. The role requires a thorough understanding of the technologies that underpin our systems and a broad, up-to-date knowledge of information security frameworks, pertinent regulation and legislation, vulnerability management, incident management and response, secure development techniques and approaches, Cyber Security engineering and operations and management and governance of Cyber risk and Cyber Security.
You will need to be capable of viewing the risks of the business through a security lens, providing expert support and advice to our Executive Committee and all functional areas and sites across the business. This requires a collaborative and people oriented approach providing guidance as required and supporting all initiatives, strategies and business objectives to balance the delivery of productivity, efficiency and growth against the demands of security.
You’ll also be comfortable with ISO27001, PCI-DSS – and be driven to find suitable frameworks to ensure the business operates to the highest level of security compliance. You will have experience of managing and advising senior/leadership teams on the security roadmap for the business and be comfortable in both leading your own team, expert partners and consultants as well as influencing others to achieve our high standards.

KEY RESPONSIBILITIES:

• Define, develop and maintain a business-aligned Information and Cyber Security strategy and operating model.
• Define and embed an Information Security Policy Framework, in line with relevant legislations and industry standards.
• Provide advice and direction to the Executive and Senior Leadership Team in the integration of security practices into their strategic and operational processes.
• Drive our strategy and challenge stakeholders internally to adopt best practice.
• Establish and maintain clear and measurable Information and Cyber Security strategic plans, budgets and targets as well as robust and fit-for-purpose operational procedure service improvements and ensure that all elements of the service represent the best value for money.
• Work closely with internal stakeholders and business units to keep abreast of planned changes to technologies, working practices and business activities that could have an impact on our Security or risk profile.
• Define active monitoring for cyber threats and attacks and take pro-active and re-active action to any cyber incident (e.g., new vulnerability identified that requires urgent patching).
• Ensuring the security posture of the business meets the needs of our customers and partners. Build a proactive approach to security, developing reusable documentation and assets that lead the way in demonstrating our approach to security.
• Working alongside the Legal and Compliance teams on our Privacy and Compliance Hub to ensure effective standards for Data security, GDPR, Compliance etc.
• Working with our clients and suppliers to ensure compliance against agreed standards, policies, processes and functionality.
• You’ll be an integral part of the team which determines which tools to use, how to implement them and how the outputs of those tools should be consumed.
• You’ll ensure that devices and services are monitored from a security/Infosec standpoint.
• You’ll work closely with 3rd party services to ensure our infrastructure is managed to service levels and compliance standards.You will implement and then run an enterprise approach to standards, compliance and accreditation to the organisation globally starting initially with group and then expanding this to all of our data centre locations across Europe and APAC.