Cyber Security Lead
Found in: Talent UK C2 - 1 week ago
Description
:IT Security is a global function residing within the IT department operating from London and Houston. The IT Security Team Lead will be based in London. The purpose of the IT Security function is to manage cyber risks and issues for EDF Trading globally.
Position purpose
The IT Security Team Lead provides line management to the IT security team in London (4 direct reports), collaborates with the Global Head of IT Security (Houston) to drive the implementation of the global security roadmap and manage day to day security operations for the Europe and Asia region. While the role requires a technical background to provide continuity with others in the team and to be an SME to internal stakeholders for IT Security matters, the role has an emphasis on cyber risk management and governance.
Main responsibilities
Security programme [40%] : Implement and/ or manage the implementation of solutions to counter cybersecurity risks in accordance with the global security roadmap including:
Collaborating with the to maintain the roadmap. Program-managing the portfolio of security initiatives with support from project managers. Researching, designing and testing solutions to counter cybersecurity risks. Implementing and maintaining solutions owned by IT Security. Designing and implementing processes. Project planning, managing dependencies and coordinating resources.Governance, risk and compliance [20%] : Manage the regional cyber risk exposure and drive compliance with established policies, standards and procedures including:
Working closely with the to continually develop, improve and maintain a globally consistent approach to the adoption of IT Security controls. Performing cyber risk assessments and contributing to the global risk register. Managing and tracking of risk treatment actions. Performing gap analysis and/ or assessing compliance with established controls. Undertaking due diligence on prospective and existing third-party service providers. Measuring and reporting performance via Key Performance Indicators (KPIs).Security incident response [20%] : Develop and maintain a highly effective cyber incident response capability including:
Being the regional cyber incident handler and central point of contact. Continually improving our global incident response process and technical playbooks. Responding to alerts from internal monitoring tools and our MDR service. Leading incident response exercises supported by external consultancies where needed.Team lead [20%] : Lead the London security team and be the central point of contact for IT and business stakeholders in the Europe region for cyber security including:
Working with the to establish clear, achievable team goals and objectives, ensuring team members understand their individual contributions to the big picture. Facilitating open communication, conveying information from senior management to the team and vice versa. Listening and acting on team members’ concerns, feedback and ideas. Inspiring, motivating and coaching team members as needed to achieve their best performance. Continue to foster a positive team culture. Helping to prioritize, track completion and resolve issues to ensure tasks are completed to agreed timelines and standards. Lead regular stand-up/ team meetings. Conducting individual performance management reviews for team members. Supporting the training and development needs of team members.Experience required
The successful candidate can demonstrate they have:
Previous team lead experience for a team of a similar size (e.g., 2+ direct reports). Planned and managed a reasonable number of projects/ initiatives, coordinating the resources of own team and other teams. Can demonstrate good stakeholder management. Extensive incident planning and response experience, managing incidents, developing processes, playbooks and leading tabletop exercises. First-hand experience with analysing cyber threat intelligence and leveraging the content to produce actionable defence initiatives. Significant experience (several years) in performing cyber risk assessments. For example, they have performed broad assessments/ gap analysis against a variety of security frameworks and can risk-assess a solution/ architecture presented to them and provide clear recommendations. Good working knowledge and can advise on securing Microsoft Windows, Active Directory and Azure AD. Experience in the following fundamentals is an advantage:Managing Active Directory users, computers, and group policy security settingsConfiguration of Windows Clients and ServersConfiguration of Microsoft Azure, Office 365 and Defender servicesUsing PowerShell to administer or audit objects and automate tasks.Implementing technology hardening configurations. Hands-on experience with deploying, configuring, and managing endpoint security solutions including EPP’s, EDR, host firewalls and device control.Technical requirements
Offensive Security Certified Professional (OSCP) or equivalent certification or training (e.g. TryHackMe or Hackthebox) is desirable because of the mindset it instils. If these cannot be demonstrated, we are looking for someone who understands at a detailed level how attacks work and thus how to mitigate them with precision. Is familiar with the Mitre ATT&CK knowledge base and how to leverage it for cyber defence. Strong working knowledge and ideally practical experience in leveraging Microsoft capabilities to mitigate risks affecting Microsoft Windows clients, servers, and cloud services. Is familiar with industry frameworks including ISO 27001 and CIS Critical Controls. Is proficient at using Excel to analyse, manipulate or present data quickly. Strong project planning and execution using Kanban or Waterfall methodologies.Person specification
Has a ‘security mindset’ – asks the right questions to identify security flaws/ issues. Is tenacious, if told something can’t be done, they will proactively research, talk to others and find solutions to security challenges. Demonstrable interest and curiosity in cyber security. Highly self-motivated, proactive and approaches challenges with a positive can-do attitude. When presented with an objective, can research, plan, organise and deliver to deadlines with minimal supervision. Attention to detail and strong focus on accuracy of information. Excellent communication skills, being able to adapt their communication style and vocabulary depending on the audience (e.g. technical SME’s vs senior managers). Being able to proof communications created by others.Hours of work:
40 hours a week, core hours of 8.30am – 5.30pm. Hybrid working policy.
-
Cyber Security Specialist
2 weeks ago
London, United Kingdom Iceberg Cyber Security Full timeMy client is a leader within the Block-chain space and are looking fro someone to come in and structure their cybersecurity assurance. The role is very muck for someone who is motivated by greenfield projects and is happy being a individual contributor, taking ownership over an organisations Cyber GRC. My client is in the process of moving their tech hub...
-
Cyber Security Specialist
2 weeks ago
London, United Kingdom Cyber Spring Full timeJob Description I am currently working with an exciting Software business looking for a Cyber Security Specialist in the UK to support a wider global security team. Working closely with the Information Security Manager, we are looking for someone to help maintain the security of the company by managing and monitoring a range of security tools and...
-
Cyber Security Sales Executive
2 weeks ago
London, United Kingdom Stellar Cyber Full timeStellar Cyber is a fast-growing Cybersecurity company focused on delivering holistic cyberattack protection to organizations while significantly reducing total costs of ownership with its innovative Open XDR (eXtended Detection and Response) platform based on advanced ML and security technologies. To accelerate our growth, we are seeking a talented Head of...
-
Lead Security Systems Engineer
2 weeks ago
London, United Kingdom Cyber Crime Full timeThe GSMA is a global organisation unifying the mobile ecosystem to discover, develop and deliver innovation that helps business and society thrive. Technical Security Director Cyber-attacks continue to increase in sophistication and volume against mobile networks. Set against a background of the roll out of 5G and evolution of legacy technology to cloud...
-
Lead Cyber Security Consultant
Found in: beBee S GB - 7 days ago
London, United Kingdom Ncounter Full timeLead Cyber Security Consultant - Intelligence Community A consultancy partner is looking for a Lead Cyber Security Consultants to lead a number of small teams across multiple engagements with their clients in National Security, Defence and the Intelligence Community. With a catalogue of further projects across Central Government, Policing/Law Enforcement,...
-
Lead Cyber Security Consultant
Found in: beBee jobs GB - 6 days ago
London, Greater London, United Kingdom Ncounter Full timeLead Cyber Security Consultant Intelligence Community A consultancy partner is looking for a Lead Cyber Security Consultants to lead a number of small teams across multiple engagements with their clients in National Security, Defence and the Intelligence Community. With a catalogue of further projects across Central Government, Policing/Law Enforcement,...
-
Client Cyber Security Lead
7 days ago
London, United Kingdom Eames Consulting Full time**Client Cyber Security lead** **Remote** **£85,000** My client are looking to hire a client Security Lead who will own and drive their critical cyber security auditing processes. You'll be part of meaningful and impactful work that supports an industry faced with an ever-increasing challenge. You'll be leading our audit and certification team, so...
-
Cyber Information Security Lead
2 weeks ago
City of London, Greater London, United Kingdom Experis - ManpowerGroup Full timeTitle: Cyber Information Security Lead Location: Central London- Hybrid Length- 7 Months Initial Inside IR35 Experis are currently on the lookout for a Cyber Information Security Lead. The Cyber Lead role supports the Technical Information Security Officer (TISO) to drive execution of the Group Information Security and Cybersecurity strategy. The role...
-
Cyber Security Lead
2 weeks ago
London, United Kingdom Michael James Associates Full timeJob Description Permanent - Hybrid (2-days in City of London) Our client an Insurance firm is looking for a Cyber Security Leader who has experience in securing cloud environments, specifically Azure. Reporting into the Platform Services Architect you will support infrastructure and applications teams and support the overall Platform Services technology...
-
Cyber Security Delivery Lead
2 weeks ago
London, United Kingdom H&R Talent Full timeA leading financial services company located in London is seeking a Cyber Security Delivery Lead to join their team on a permanent basis. The ideal candidate for this role is someone who has a strong background in cyber security and has experience in managing a team. About the Role The Cyber Security Delivery Lead will have a broad understanding of...
-
Cyber Information Security Lead
Found in: beBee jobs GB - 2 weeks ago
City of London, United Kingdom Undisclosed Company Full timeTitle: Cyber Information Security LeadLocation: Central London- Hybrid Length- 7 Months Initial Inside IR35 Experis are currently on the lookout for a Cyber Information Security Lead. The Cyber Lead role supports the Technical Information Security Officer (TISO) to drive execution of the Group Information Security and Cybersecurity strategy. The role...
-
Cyber Information Security Lead
Found in: beBee S GB - 3 weeks ago
City of London, United Kingdom Undisclosed Company Full timeTitle: Cyber Information Security LeadLocation: Central London- Hybrid Length- 7 Months Initial Inside IR35 Experis are currently on the lookout for a Cyber Information Security Lead. The Cyber Lead role supports the Technical Information Security Officer (TISO) to drive execution of the Group Information Security and Cybersecurity strategy. The role...
-
Cyber Security Consultant
Found in: Talent UK 2A C2 - 2 days ago
Greater London, United Kingdom Security Cleared Jobs Full timeCyber security consultant - technologiesAbout BMT We exist to navigate the most important and impactful engineering challenges of our time. We create environments where people with outstanding technical knowledge deliver meaningful, practical solutions. We are driven by a commitment to a safer, more efficient, effective and sustainable future. To find out...
-
Cyber Security Team Lead
1 week ago
London, United Kingdom Proactive Appointments Full time**Cyber Security Team Lead** Inside IR35 - Hybrid working Our client, a leading global banking organisation have an opportunity for a Cyber Security (SbD) Team Lead to join on a 6 month contract. You will be responsible for leading a team of Governance Risk and Control SMEs responsible for carrying out IT SecurityAssessments (Secure-by-Design) on...
-
Information Security/ GRC Specialist
2 weeks ago
London, United Kingdom Iceberg Cyber Security Full timeJob Description My client is a leader within the Block-chain space and are looking fro someone to come in and structure their cybersecurity assurance. The role is very muck for someone who is motivated by greenfield projects and is happy being a individual contributor, taking ownership over an organisations Cyber GRC. My client is in the process of moving...
-
Cyber Security Lead
7 days ago
London, United Kingdom Tate & Lyle Full time**Cyber Security Lead** **London (Hybrid working)** **Full time** Join us as a Cyber Security Lead responsible for the ongoing support, operations, and project activities for the Information Security team. **Unlock your curiosity at the new Tate & Lyle** Tate & Lyle is on a journey of change, inspired by our purpose of Transforming Lives through the...
-
Cyber Security Lead
2 weeks ago
London, United Kingdom H&R Talent Full timeA leading financial services company located in London is seeking a Cyber Security Delivery Lead to join their team on a permanent basis. The ideal candidate for this role is someone who has a strong background in cyber security and has experience in managing a team. The Cyber Security Delivery Lead will have a broad understanding of cybersecurity, project...
-
Cyber Security Advisor
3 days ago
London, United Kingdom Fruition IT Full timeJob DescriptionAn excellent opportunity for an experienced **Cyber Security Advisor **to join a global media group in the middle of an ambitious cyber security development programme. The **Cyber Security Advisor **will act as a primary interface between the cyber security team and an assigned business unit, and will act as a trusted advisor to senior...
-
Lead Cyber Security Engineer
2 weeks ago
London, United Kingdom Belmont Lavan Full timeKey responsibilities: Create and implement new cyber security policies, processes and plans ensuring the compliance of all devices within the company On point for responding to and Leading internal and external cyber security audits, customer and auditor information requests and engage to manage the queries. Performing regular monitoring for intrusions...
-
Lead Cyber Security Engineer
Found in: Jooble UK C2 - 2 weeks ago
London, United Kingdom Belmont Lavan Full timeKey responsibilities: Create and implement new cyber security policies, processes and plans ensuring the compliance of all devices within the company On point for responding to and Leading internal and external cyber security audits, customer and auditor information requests and engage to manage the queries. Performing regular monitoring for intrusions...
