Chief Information Security Officer

**WE’RE RECRUITING**

**Do you have experience operating as a Chief Information Security Officer (CISO) within a company of 1000+ employees? If so, we have an opportunity where you will drive compliance and awareness across the Group with a rapidly growing MSP that is going places**

**Salary**:Competitive base + bonus + benefits

**Job Type**:Permanent

**The Role**:
Reporting to the CIO, you will be responsible for maintaining, developing, evolving, governing and ensuring implementation and adherence to our group security policy and strategy.

Two key areas of focus will be:
1. The internal corporate security policy

2. The security strategy adopted for the products and services offered to Customers

The role holds critical delegated authority to ensure the security and integrity of systems and data are maintained. The principle objective is to ensure that the opportunity for financial or reputational loss to occur through a hack, any data loss, or criminality of any kind in relation to the company’s systems or customers systems, is minimised.

As well as influencing and driving change internally, part of the role will be managing strategic and operational relationships with key stakeholders within both 3rd party Supplier and Partner organisations. We are looking for someone who inspires, influences and motivates individuals both internally and externally to ensure understanding and compliance with policies and procedures

**Responsibilities**:

- Sets a clear direction and purpose for the team and defines, agrees, and documents objectives that are clearly understood, measured and result in driving strong individual and team performance.
- Set and operate the annual group security budget for all corporate security services.
- Provide governance on supplier relationships that are direct cost related.
- Accountable for relationships with 3rd party suppliers directly related to Nasstar’s security portfolio.
- End to End ownership of all regulatory certifications required, i.e all ISO levels, PCI, Cyber Essentials NIS.
- Responsible for crisis management, response and remediation of any major security exposure.
- Ensuring our Managed Security Services offerings comply with legal, regulatory, and contractual requirements.

**About You**:

- Proven technical track record or valid certifications in security fields such as CREST/CISSP/CISM/NCSF.
- Experience leading and managing Risk Management and Compliance.
- Knowledge and experience in managing the integrity of security architecture, disaster recovery planning and developing and deploying the metrics related to the successful deployment of Application and Database security updates.
- Experience in forecasting and implementing appropriate financial controls.
- Experience working as an integral part of the senior management team.
- Experience in building business cases and quantifying the commercial impact of changes on own function and the wider Company.

**About Nasstar**

At Nasstar, we specialise in transformative technology. With an integrated suite of services, we design, implement, and manage multi-cloud solutions to help our customers transform and modernise. Our impressive portfolio of customers in every industry across the globe, is supported by a talented team of technical leads, consultants, Project Managers, and everything in between.

At Nasstar, we know the importance of looking after our employees - after all, it’s the team that underpins our business With a real opportunity to progress in your career with a forward-thinking organisation, our benefits package also includes:

- 25 days’ holiday plus bank holidays
- Flexible working
- Virtual working
- Top tech
- 4x annual salary life assurance
- Private medical care
- Retail discounts and other perks from major brands

**Job Types**: Full-time, Permanent

**Benefits**:

- Work from home

Schedule:

- Monday to Friday

Work Location: Remote