Information Security Manager

Head of IT Resilience, Information Security and GRC
Vacancy Name Head of IT Resilience, Information Security and GRC
Job Title: Head of IT Resilience, Information Security and GRC

Development, communication and execution of the company’s Technology Strategy, Governance processes, Architectural guidelines, and Risk management
Provision of secure, efficient and high-quality IT and Broadcast services

Driven by the Channel’s Future4 strategy, our business in the midst of an accelerated digital transformation. The operating model is aligned with the four key areas of Channel 4’s business, Content; Commercial; These business orientated units will be supported by a strong central function that provides leadership and services through Governance Risk & Compliance, Service Management, and Strategy, Architecture & Data.
This exciting role will be on forefront of shaping the security architecture and protection of Channel 4’s data and IT platforms. The Head of IT resilience, Information Security and GRC role will focus on developing and driving Channel 4’s information and data security strategy and programme.
IT Governance, Risk and Compliance
IT Resilience

Advise Channel 4 senior leadership and other relevant stakeholders to enable effective decision making on information security matters.
Provide leadership and senior voice on all matters relating to IT resilience and information security.
Update and deliver the Channel 4 resilience and information security strategy aligned with wider business goals.
Lead work to simplify, mature and maintain organisational security policies, standards, and processes and procedures.
Deliver cost effective solutions to protect Channel 4’s information assets.
Ensure effective security monitoring is in place.
Produce and maintain the information security governance and risk frameworks.
Communicate good practice, security policies, standards, legal and regulatory requirements to the wider business.

You have broad foundation based on practical hand-on experience managing IT or security controls, as well as leading and developing security teams. Senior management and leadership experience in cybersecurity role.
Highly experienced in the application of IT resilience, IT governance and information security standards and frameworks.
Skilled in determining, establishing, and maintaining appropriate strategies, policies, standards, and procedures for protecting information security assets.
Extensive knowledge of technology including networking, hosting, application development, identity and access management, and encryption.
Experience of managing information security incidents at all levels (24/7 SOC and skilled senior staff will be reporting to the role holder – the role holder needs to be capable of managing stakeholders during critical incidents)
Knowledge of legal and regulatory requirements that could affect security requirements within the television and media sector.
Familiarity with cloud security principles, including knowledge of Microsoft Azure, AWS and GCP services and security products.
Strong knowledge of information security frameworks, standards, and legislation (ISO 27001, NIST, GDPR).
Experience developing risk assessments and risk mitigation strategies and action plans.
Skilled in producing documents or reports, including internal audits, assessments, or gap analysis.
Job Title: Head of IT Resilience, Information Security and GRC

Development, communication and execution of the company’s Technology Strategy, Governance processes, Architectural guidelines, and Risk management
Provision of secure, efficient and high-quality IT and Broadcast services

Driven by the Channel’s Future4 strategy, our business in the midst of an accelerated digital transformation. The operating model is aligned with the four key areas of Channel 4’s business, Content; Commercial; These business orientated units will be supported by a strong central function that provides leadership and services through Governance Risk & Compliance, Service Management, and Strategy, Architecture & Data.
This exciting role will be on forefront of shaping the security architecture and protection of Channel 4’s data and IT platforms. The Head of IT resilience, Information Security and GRC role will focus on developing and driving Channel 4’s information and data security strategy and programme.
IT Governance, Risk and Compliance
IT Resilience

Advise Channel 4 senior leadership and other relevant stakeholders to enable effective decision making on information security matters.
Provide leadership and senior voice on all matters relating to IT resilience and information security.
Update and deliver the Channel 4 resilience and information security strategy aligned with wider business goals.
Lead work to simplify, mature and maintain organisational security policies, standards, and processes and procedures.
Deliver cost effective solutions to protect Channel 4’s information assets.
Ensure effective security monitoring is in place.
Produce and maintain the information security governance and risk frameworks.
Communicate good practice, security policies, standards, legal and regulatory requirements to the wider business.

You have broad foundation based on practical hand-on experience managing IT or security controls, as well as leading and developing security teams. Senior management and leadership experience in cybersecurity role.
Highly experienced in the application of IT resilience, IT governance and information security standards and frameworks.
Skilled in determining, establishing, and maintaining appropriate strategies, policies, standards, and procedures for protecting information security assets.
Extensive knowledge of technology including networking, hosting, application development, identity and access management, and encryption.
Experience of managing information security incidents at all levels (24/7 SOC and skilled senior staff will be reporting to the role holder – the role holder needs to be capable of managing stakeholders during critical incidents)
Knowledge of legal and regulatory requirements that could affect security requirements within the television and media sector.
Familiarity with cloud security principles, including knowledge of Microsoft Azure, AWS and GCP services and security products.
Strong knowledge of information security frameworks, standards, and legislation (ISO 27001, NIST, GDPR).
Experience developing risk assessments and risk mitigation strategies and action plans.
Skilled in producing documents or reports, including internal audits, assessments, or gap analysis.
Hybrid Working:
From September 2023, C4 has operated a 60/40 working pattern, equating to three office days per week. 
Having everyone in the office three days a week gives us more opportunity to build our high performing, inclusive culture; to collaborate and to learn and share with each other, as well as helping to coordinate a regular pattern of home and office working days.
26 days annual leave (including a day off for your birthday)
• Company funded Private Medical Insurance
• A generous Group Personal Pension
• Access to our flexible benefits scheme including dental, travel insurance, health screenings and more by representing unheard voices, challenging with purpose and delivering content which reflects the diversity of different communities across the UK.
We are only able to deliver on this remit by having a workforce rich in diversity of thought, background and lived experience. As an employer we encourage applications from candidates from all backgrounds and do not discriminate based on disability, age, gender reassignment, gender expression, criminal history, length of time spent unemployed, marriage or civil partnership status, national origin, pregnancy and maternity status, race, religion or belief, sex, and sexual orientation.
Disability Confident Scheme:
Channel 4 is a member of the Business Disability Forum (BDF) and has also maintained the highest level of the Department of Work and Pension's Disability Confident scheme - Level 3: Leader. Under the Disability Confident Scheme, we aim to offer an interview to all candidates who have a neurodiverse condition, impairment or long-term condition and who meet the essential criteria for an advertised job. If you wish your application to be considered under the Disability Confident Scheme, please select yes when completing the application questions. For more information, please visit the Disability Confident Campaign website.
By signing the Care Leaver Friendly Employer Charter and adopting its principles, we are supporting an immensely talented yet often under-served and under-represented community of young people/ adults. We are committed to providing disabled applicants a level playing field when applying for a job and support whilst employed to perform to the best of their ability and develop their careers. If you have a neurodiverse condition, impairment or long-term condition and require any adjustments, additional support or alternative arrangements during the recruitment and wish to discuss this confidentially, please let us know via the following e-mail recruitment@channel4.