We are seeking a dynamic and strategic Regional Chief Information Security Officer (CISO) to lead the safeguarding of Sodexo's technology, data, and digital assets across the UK & Ireland. This pivotal role is responsible for setting and delivering cybersecurity strategies that align with business objectives, ensuring compliance with all relevant laws, regulations, client contracts, and Group security standards.
Join Sodexo and be part of something greater. You belong in a team where you can act with purpose and thrive in your own way.
For more information on Sodexo Careers please visit Sodexo Careers
Main Responsibilities
* Leadership, Strategy & Governance (A visible security function empowered by a clear mandate from the CISO)
Direct and execute a risk-based Information & Cyber Security Strategy and Roadmap that implements security initiatives delivering the greatest risk reduction against business security risks.
* Risk & Compliance (Implement controls optimized for the greatest risk reduction)
Develop and present comprehensive cybersecurity risk reports to the Enterprise Risk Management Committee and the RLT, translating technical information into business-relevant insights.
Develop, implement, and maintain security processes and policies, identifying and reducing risks, limiting liability and exposure to informational, physical, and financial risks.
* Security by Design (Embed security into new projects and capabilities by adopting a security-first mindset)
Ensure security controls are embedded into the software development lifecycle (SDLC) and collaborate within TDDI to ensure secure coding practices and robust security architecture.
* Supply Chain (Assurance that our key dependencies are secure and resilient)
Implement and manage robust third-party risk management to provide accurate and actionable information on supplier risk.
* Cyber Defence (People, Processes, Technology, and Partners that help detect threats, contain, mitigate, respond, and recover from cyber threats)
Direct the implementation of measures to improve cybersecurity culture within the region and reduce people risk.
The Ideal Candidate
* Extensive experience
* Strategic Planning: Developing long-term security strategies aligned with organizational goals.
* Change Management: Leading change initiatives to improve security posture.
* Performance Metrics: Establishing and monitoring KPIs to measure security program effectiveness.
* Technical Expertise: Deep understanding of cybersecurity technologies such as firewalls, intrusion detection, encryption, and network security protocols.
* Regulatory Compliance: Knowledge of laws, regulations, and standards like GDPR, Cyber Essentials, ISO/IEC 27001, and ensuring compliance.
* Incident Response: Developing and managing incident response plans and managing security breaches.
* Security Architecture: Designing and implementing robust security architectures.
* Project Management: Managing security projects from planning to execution within budget and time constraints.
Package Description
Competitive salary + 20% bonus + Car allowance
Hybrid working - 2-3 days in the office
Joining Sodexo means being part of something greater.
We value you for who you are; you can act with purpose and make an impact through your actions; and thrive in your own way.
We also offer 20+ Sodexo benefits, including a retirement plan, discounts at over 1,900 brands, gym discounts, and a 24/7 employee assistance program for support with emotional, legal, and financial issues.
For more details on our benefits, please see attached.
Ready to be part of something greater? Apply today!
About The Company
At Sodexo, our purpose is to create a better everyday for everyone to build a better life for all. As the global leader in services that improve the Quality of Life, we operate in 55 countries, serving over 100 million consumers daily through our On-Site Food and FM Services, Benefits & Rewards Services, and Personal & Home Services.
We are committed to building a future workplace, promoting equal opportunities, and celebrating diversity. We are an inclusive workplace where everyone is welcome and encouraged to be their best. We recognize our ongoing journey with diversity and inclusion and welcome applications from underrepresented backgrounds.
We are a Disability Confident Leader employer, committed to changing attitudes towards disability and ensuring disabled people can fulfill their aspirations. We run a Disability Confident interview scheme for candidates with disabilities who meet the minimum criteria.
#J-18808-Ljbffr