Job description
Director of Cybersecurity, Risk & Resilience (CISO)
Are you a seasoned cybersecurity leader with the vision and expertise to protect global digital assets, ensure operational resilience, and mitigate evolving cybersecurity threats?
We’re seeking a Director of Cybersecurity, Risk & Resilience to spearhead our Oxfordshire based client's cybersecurity strategy and build a world-class security posture.
As the CISO, you will lead a global team of cybersecurity professionals and third-party suppliers to develop, implement, and maintain processes that reduce information and technology risks. Reporting to the Technology Director, you’ll ensure information assets and technologies are protected against emerging cybersecurity threats while driving the organization’s vision, strategy, and program for resilience.
Crucially, this role demands extensive experience in managing third-party suppliers to ensure outsourced services align with organizational goals and deliver measurable results.
This is an exceptional opportunity to drive transformative change, align cybersecurity strategies with business goals, and safeguard critical information assets.
Key Responsibilities:
Strategic Leadership
- Establish and maintain the organization’s vision, strategy, and program to protect information assets and technologies.
- Develop and implement an enterprise-wide cybersecurity strategy aligned with business objectives.
- Define and deliver a multi-year roadmap for enhanced cybersecurity, risk, and resilience.
Lead the creation and adoption of robust cybersecurity policies and standards based on industry frameworks (e.g., ISO 27001, NIST CSF).
Governance & Compliance
- Ensure compliance with cybersecurity regulations (e.g., PCI DSS, GDPR) and industry best practices.
- Oversee internal and external cybersecurity audits and act as the liaison with regulatory bodies.
- Present the state of cybersecurity governance and risk to executive stakeholders.
Cybersecurity Operations & Engineering
- Manage threat detection, vulnerability assessment, and incident response programs.
- Lead the design, implementation, and maintenance of cybersecurity infrastructure.
- Drive the adoption of advanced security technologies and strategies.
- Ensure infrastructure, endpoints, and systems are rigorously protected and monitored.
Third-Party Supplier Management
- Manage and oversee relationships with third-party suppliers, ensuring services are delivered to agreed standards and KPIs.
- Optimize the balance between in-house and outsourced capabilities to meet strategic goals.
- Ensure third-party suppliers adhere to cybersecurity policies, compliance frameworks, and deliver value for money.
Training & Awareness
- Develop and deliver security training programs to promote a culture of cybersecurity awareness across the organization.
Key Attributes:
- Leadership Excellence: Skilled at influencing at the C-suite level with strong stakeholder management capabilities.
- Strategic Vision: Proven ability to develop and execute forward-looking strategies that deliver measurable security improvements.
- Third-Party Supplier Expertise: Demonstrated experience in managing and optimizing third-party supplier relationships to deliver value and performance.
- Problem-Solving: Thrives in ambiguity and excels at prioritizing and delivering impactful results.
- Integrity: A trusted advisor with a track record of delivering on commitments and driving sustainable change.
What We’re Looking For:
- Extensive experience leading cybersecurity, risk, and resilience functions in a global environment.
- Proven track record of managing third-party suppliers in high-pressure environments.
- Strong knowledge of industry frameworks and standards (e.g., NIST CSF, ISO 27001).
- Proven track record of delivering cybersecurity transformation programs.
- Deep technical knowledge of emerging security threats, technologies, and mitigation strategies.
The CISO is a senior-level executive responsible for establishing and maintaining the organization’s vision, strategy, and program to ensure information assets and technologies are adequately protected against cybersecurity threats. The role will lead a team of cybersecurity professionals and third-party suppliers in identifying, developing, implementing, and maintaining processes to reduce information and technology risks.
If you’re ready to lead from the front, safeguard critical assets, and shape the future of cybersecurity resilience, we want to hear from you.
Send your CV now for consideration. Interviews to be held as early as next week.
Are you a seasoned cybersecurity leader with the vision and expertise to protect global digital assets, ensure operational resilience, and mitigate evolving cybersecurity threats?
We’re seeking a Director of Cybersecurity, Risk & Resilience to spearhead our Oxfordshire based client's cybersecurity strategy and build a world-class security posture.
As the CISO, you will lead a global team of cybersecurity professionals and third-party suppliers to develop, implement, and maintain processes that reduce information and technology risks. Reporting to the Technology Director, you’ll ensure information assets and technologies are protected against emerging cybersecurity threats while driving the organization’s vision, strategy, and program for resilience.
Crucially, this role demands extensive experience in managing third-party suppliers to ensure outsourced services align with organizational goals and deliver measurable results.
This is an exceptional opportunity to drive transformative change, align cybersecurity strategies with business goals, and safeguard critical information assets.
Key Responsibilities:
Strategic Leadership
- Establish and maintain the organization’s vision, strategy, and program to protect information assets and technologies.
- Develop and implement an enterprise-wide cybersecurity strategy aligned with business objectives.
- Define and deliver a multi-year roadmap for enhanced cybersecurity, risk, and resilience.
Lead the creation and adoption of robust cybersecurity policies and standards based on industry frameworks (e.g., ISO 27001, NIST CSF).
Governance & Compliance
- Ensure compliance with cybersecurity regulations (e.g., PCI DSS, GDPR) and industry best practices.
- Oversee internal and external cybersecurity audits and act as the liaison with regulatory bodies.
- Present the state of cybersecurity governance and risk to executive stakeholders.
Cybersecurity Operations & Engineering
- Manage threat detection, vulnerability assessment, and incident response programs.
- Lead the design, implementation, and maintenance of cybersecurity infrastructure.
- Drive the adoption of advanced security technologies and strategies.
- Ensure infrastructure, endpoints, and systems are rigorously protected and monitored.
Third-Party Supplier Management
- Manage and oversee relationships with third-party suppliers, ensuring services are delivered to agreed standards and KPIs.
- Optimize the balance between in-house and outsourced capabilities to meet strategic goals.
- Ensure third-party suppliers adhere to cybersecurity policies, compliance frameworks, and deliver value for money.
Training & Awareness
- Develop and deliver security training programs to promote a culture of cybersecurity awareness across the organization.
Key Attributes:
- Leadership Excellence: Skilled at influencing at the C-suite level with strong stakeholder management capabilities.
- Strategic Vision: Proven ability to develop and execute forward-looking strategies that deliver measurable security improvements.
- Third-Party Supplier Expertise: Demonstrated experience in managing and optimizing third-party supplier relationships to deliver value and performance.
- Problem-Solving: Thrives in ambiguity and excels at prioritizing and delivering impactful results.
- Integrity: A trusted advisor with a track record of delivering on commitments and driving sustainable change.
What We’re Looking For:
- Extensive experience leading cybersecurity, risk, and resilience functions in a global environment.
- Proven track record of managing third-party suppliers in high-pressure environments.
- Strong knowledge of industry frameworks and standards (e.g., NIST CSF, ISO 27001).
- Proven track record of delivering cybersecurity transformation programs.
- Deep technical knowledge of emerging security threats, technologies, and mitigation strategies.
The CISO is a senior-level executive responsible for establishing and maintaining the organization’s vision, strategy, and program to ensure information assets and technologies are adequately protected against cybersecurity threats. The role will lead a team of cybersecurity professionals and third-party suppliers in identifying, developing, implementing, and maintaining processes to reduce information and technology risks.
If you’re ready to lead from the front, safeguard critical assets, and shape the future of cybersecurity resilience, we want to hear from you.
Send your CV now for consideration. Interviews to be held as early as next week.
