Social network you want to login/join with:
I hope you’re okay! Are you ready for your next professional adventure?
We share your motivation to progress your career and achieve your ambitions – so we want to let you know about the latest Cyber Delivery Assurance Lead - London role. Check out the details for this vacancy with a world-leading airline company below:
Location: Waterside, London
Hours: Monday to Friday (37.5 hours per week)
Rate: £700-£750 per day through UMBRELLA (Inside IR35)
Job purpose:
* This role reports to the Head of Cyber & IT Risk, working closely with the client’s Tech Delivery Teams, Cyber Team, and Cyber Security Office. Acts as the Client Cyber representative on product delivery and operates as part of “product” teams, providing advice on implementing cyber security policies and standards across all releases and ongoing maintenance.
Accountabilities:
* Provide assurance to the Head of Cyber & IT Risk that product delivery and maintenance meet the client’s risk appetite and that controls operate effectively.
* Embed security by design with proportionate cyber controls aligned to risk.
* Manage senior stakeholders (negotiation and influencing) across multinational organizations, including third-party suppliers and delivery partners.
* Take full responsibility for the secure delivery of programs by interpreting and embedding Cyber Security policies, standards, guidelines, and procedures within an agreed framework for all product team deliverables.
* Engage proactively with the client Cyber Security Office (CSO) project assurance and architecture teams to ensure best cyber practices are followed.
* Provide authoritative advice on the application and operation of security controls, including legislative or regulatory requirements.
* Advise users on risk management and reduction, and promote awareness through cyber awareness programs.
Skills:
* Ability to undertake threat and risk assessments across various technology stacks, identifying suitable mitigating controls.
* Strong leadership and communication skills, with the ability to influence and persuade at senior levels, leading by example and aligning stakeholder groups around a common vision.
* Initiate and manage change to secure the future direction of the client.
* Prioritize tasks across multiple products based on overall delivery strategy.
* Work effectively under pressure in a dynamic environment.
Qualifications:
* Broad technical knowledge of cyber security controls demonstrated by relevant qualifications such as CISSP, ISO27001 Lead Implementer, SANS GIAC, or equivalent.
* Knowledge of frameworks and regulations like NIST, PCI DSS, GDPR, NIS, and NCSC cyber guidance.
* Experience in an agile delivery environment is highly advantageous.
* Demonstrable experience in areas such as Cloud security, network security, digital security, infrastructure security, security by design, or security architecture.
* Experience in regulated environments with specific cyber requirements requiring interpretation and application.
Key performance indicators:
* Engagement in program and product governance to ensure secure delivery.
* Providing regular, accurate updates to stakeholders on security deliverables.
* Identify, report, and manage cybersecurity risks and exceptions throughout the product lifecycle.
Start Date: ASAP
Interested in applying? Just reply with an up-to-date copy of your CV to get started.
If this role isn't a perfect fit but you know someone who might be interested, please let us know.
#J-18808-Ljbffr