Head of Governance, Risk & Compliance – Information Security
Posted a week ago by Deltra Group
This role is at the forefront of shaping security architecture and protecting the data and IT platforms of a major media organization. The position focuses on developing and driving the organization's information and data security strategy and program.
Key Responsibilities:
This role offers an opportunity to significantly impact a dynamic and creative organization. The ideal candidate will combine cultural fit with technical expertise, demonstrating the ability to lead and influence at the highest levels.
Key Responsibilities:
- Lead the security and resilience function, encompassing Security Architecture and Engineering, IT Governance, Risk and Compliance, and IT Resilience.
- Improve the organization’s security posture in response to the evolving threat landscape.
- Advise senior leadership and relevant stakeholders on information security matters.
- Provide leadership on IT resilience and information security.
- Align and execute the security strategy with broader business goals.
- Manage the security budget in coordination with the Technology function and the wider business.
- Simplify, mature, and maintain security policies, standards, and procedures.
- Oversee incident response and disaster recovery efforts.
- Ensure cost-effective solutions to protect information assets.
- Implement effective security monitoring.
- Develop and share KPIs to measure the effectiveness of controls.
- Lead internal and external security audit activities.
- Communicate good practices, security policies, and legal requirements to the wider business.
- Extensive experience managing IT or security controls and leading security teams.
- Senior management experience in cybersecurity.
- Expertise in IT resilience, IT governance, and information security standards and frameworks.
- Strong relationship-building skills with internal and external stakeholders.
- Ability to influence change without direct authority.
- In-depth knowledge of technology, including networking, hosting, application development, identity and access management, and encryption.
- Experience managing information security incidents.
- Familiarity with legal and regulatory requirements in the media sector.
- Knowledge of cloud security principles and services (Microsoft Azure, AWS, GCP).
- Proficiency in information security frameworks and standards (ISO 27001, NIST, GDPR).
- Skilled in risk assessments and mitigation strategies.
- Strong stakeholder management skills.
- Based in Leeds or London (Hybrid working)
This role offers an opportunity to significantly impact a dynamic and creative organization. The ideal candidate will combine cultural fit with technical expertise, demonstrating the ability to lead and influence at the highest levels.
- Type:
- Permanent
- Start Date:
- 20/06/2024
- Contract Length:
- N/A
- Contact Name:
- Login or register to view
- Telephone:
- Login or register to view
- Job Reference:
- ES-19
- Job ID:
- 221876185
Remember: You should never send money to a prospective employer or disclose any financial information. Should you encounter any job listings requesting payments or financial details, please reach out to us immediately. For further guidance, visit jobsaware.co.uk.
