Requirements
Must have:
- Fully qualified with relevant industry certifications (e.g., CISSP, CISM, CISA, SABSA) and a degree in Information Security, Computer Science, or equivalent experience - Proven senior leadership experience in information and cybersecurity within complex, multi-site, or multinational environments - Extensive experience developing and delivering enterprise-wide security strategies aligned to recognised frameworks such as ISO 27001, NIST CSF, CIS Controls, or DORA - Strong knowledge of cloud and hybrid security environments, including Microsoft 365 and Azure - Demonstrated ability to build and lead high-performing security teams across operations, architecture, and advisory functions - Deep understanding of operational security controls including EDR/XDR, SIEM platforms (e.g., Microsoft Sentinel, Splunk), identity protection, and vulnerability management - Experience contributing to audits, compliance initiatives, and risk assessments within regulated sectors - Excellent communication and influencing skills, with the ability to engage and advise senior executives and boards - Strategic, resilient, and adaptable, with the ability to balance commercial priorities and cyber risk in a fast-paced environment
Responsibilities:
- Defining and executing the enterprise-wide information security strategy aligned to business priorities and risk appetite - Leading multidisciplinary security teams across GRC, architecture, operations, and incident response, fostering a high-performance culture - Embedding recognised security frameworks and standards (e.g., ISO 27001, NIST CSF, NIS2, DORA) into policies, processes, and technology platforms - Overseeing security operations, monitoring, detection, and incident response to maintain the confidentiality, integrity, and availability of information assets - Partnering with IT, Risk, Compliance, Legal, and operational teams to identify and mitigate cyber risks and strengthen governance practices - Ensuring secure-by-design principles are embedded across technology architecture and transformation programmes - Supporting business continuity and disaster recovery planning by integrating cybersecurity into wider resilience frameworks - Providing strategic advice to senior leadership and representing the function in internal forums and external engagements where required
Company:
At EG Group, we are a leading global convenience retailer, operating a wide range of brands across multiple sectors including fuel, foodservice, and grocery retail. With a presence in over 7 countries, we are committed to innovation and exceptional customer service, continuing to expand our portfolio and reach. We offer a discretionary performance-based bonus scheme, career growth opportunities with accredited qualifications, flexible working hours, a hybrid work model, generous annual leave, and wellness benefits among others. Join us to make an impact in shaping a secure, future-ready digital organisation.