Head of Information Security

**Head of Information Security**
**Description**
Bring your career and talents to CDW, where you can have a greater impact, be inspired by our mission and excited about your job and future. With revenues of over £1 billion, CDW UK is a leading supplier of IT solutions and services to a broad range of commercial and public sector customers globally.

The Chief Information Security Officer - UK & International is responsible for all aspects of Information Security for the CDW UK & International business entity. This is a key role within our organization, reporting to the Global Chief Information Security Officer and UK and International Head of IT. The UK & International CISO will continue to build and mature our Information Security team and ensure the security of CDW and CDW client systems and data. This role will also ensure that CDW aligns to internationally and nationally recognized Security frameworks and best practices and is able to meet the stringent security needs of CDW clients. CDW require a strong and pragmatic leader with experience of building high performing teams, strong working relationships and navigating highly matrixed organizations.

*
What **you’ll** do: *
- Responsible for all aspects of Information Security for the CDW UK & International business entity.
- Leadership and development as well as the day-to-day operation of the UK & International Information Security Team.
- Work closely with colleagues in our North American Information Security Operation, ensuring cross-pollination and effective global support coverage.
- Ensuring that effective security monitoring is in place for all aspects of CDW systems and that appropriate response mechanisms exist to address any given incident.
- Analysis of security events, SIEM management, Vulnerability Management, Incident response, cyber-crisis management, cybersecurity investigations.
- Cybersecurity processes and tool implementation
*
Protects computer assets by developing security strategies, directing system control development and access management, monitoring, control, and evaluation.
- Measure compliance with policy and effectiveness of Information Security controls as part of assessing the overall cyber security risk.
- Provides periodic updates on the threat landscape of the industry, how it affects CDW and make recommendations as to the investments needed to address those threats.
- Provide leadership to individuals and teams through coaching, feedback, development goals, and performance management. Prioritize, assign and manage department activities and projects in accordance with departmental goals and objectives.
- Operate the department on a day-to-day basis, to ensure effective and efficient execution of the strategies and ensure high quality outcomes.
- Develop strong working relationships with other departmental stakeholders, including Legal, Enterprise Risk and Business Process Assurance.
- Create, manage, and publish security dashboards, appropriate to the recipients, to show operational effectiveness.
- Manages and meets system security financial objectives by forecasting requirements; preparing an annual budget; scheduling expenditures; analyzing variances; initiating corrective actions.
- Implements industry standard information security control frameworks, utilizing templates, implementation plans, metrics and tools.
- Serves as investigative lead for security related events and/or incidents.
- International travel (5-10%).
*
What you need to succeed: *
**Must-have**:

- Strong technical background (i.e. hands on and leadership roles in a Network / Infrastructure / Development capacity).
*
CISSP, CISSM or similar certifications

*
Working knowledge of common Information Security frameworks i.e. ISO, NIST, ISF, ISACA, CMMC, etc.
- Working knowledge of UK and US Security and Compliance Accrediation and Frameworks (i.e. Cyber Essentials, ISO27001, Check)
- Working knowledge of Information Security Management Systems (ISMS).
- Working knowledge of End Point Protection platforms (On Premise and SaaS Cloud Based) (i.e.Crowdstrike, FireEye & Symantec).
- Working knowledge of Palo Alto Protection appliances.
*
Excellent written and verbal communication skills with the ability to effectively interact with and present to all stakeholders.

*
History of balancing multiple priorities simultaneously with the ability to adapt to the changing needs of the business while meeting deadlines.

*
Alters the approach as the situation demands. Works effectively within a variety of situations and with various individuals and groups.

*
Strategic strong analytical skills with critical attention to detail.

*
Demonstrated ability to build and maintain relationships cross-functionally and with external stakeholders.

*
Demonstrated ability to guide coworkers to grow and develop and build strong cohesive functional teams.

*
Demonstrated ability to negotiate priorities and contracts with the ability to influence business decisions.

*
Solid pro