Head of Information Security

Head of Information Security

Join a forward-thinking international organisation as Head of Information Security, the firm are a fantastic and very supportive environment with a strong global presence in the legal market.

As the business continues to modernise its technology infrastructure, this role will be central to protecting digital assets and ensuring compliance with global security and data privacy standards.

What You’ll Be Doing:

• Partner with senior stakeholders to develop, implement, and manage the overall enterprise security strategy
• Implement a governance system for the ISMS
• Identify protection goals, objectives and metrics consistent with corporate strategic plan and work with CIO to prioritize security initiatives and spending based on appropriate risk management
• Provide subject matter expertise and thought leadership on existing and future infosec technologies platforms, including on best implementation and operations practices.
• Manage the development and implementation of global security policy, standards, guidelines and procedures to ensure ongoing maintenance of security
• Lead ISO 27001 compliance and accreditation effort
• Lead crisis management exercises at all levels of the organisation to maximise the firm's cyber readiness
• Chair Enterprise Information Security Forum/Council, and sit on Enterprise Risk Committee
• Provide the risk/security framework for the adoption of all new technologies
• Oversee the team of security employees and vendors who safeguard the company's assets, intellectual property and computer systems
• Responsible for the Information Security budget.

What We’re Looking For:

• Proven experience in IT, including at leading an enterprise-level Infosec function.
• Proven leadership ability.
• Proven experience in implementation ISO27001 in one or several organisation.
• Experience in planning and executing security policies and standards development.
• Experience in creating and efficiently managing a backlog of security findings and remediation work.
• Excellent knowledge of technology environments, including information security, building security, and defence solutions, backed by multiple industry certifications such as SANS/GIAC GSEC, ISC2 CISSP or SSCP, ISACA CISM or CISA.
• Considerable knowledge of business theory, business processes, management, budgeting, and business office operations.
• Excellent interpersonal, organisational and administrative skills, strong commitment to teamwork and collaborative problem solving, and the ability to work effectively as part of a geographically disbursed team.
• Ability to interact with and influence staff at all levels of the organisation, both verbally and in writing.
• The ability to deliver exceptional customer service in a demanding business environment.
• Excellent written and verbal communication including the ability to exchange information, present ideas, and to report facts (both verbally and in writing) clearly and concisely.
• Accountability, reliability and attention to detail.