Head of Cyber Security - West London
Do you believe the world deserves excellence?
BSI (British Standards Institution) is the business standards company
that equips businesses with the necessary solutions to turn standards of
best practice into habits of excellence.
Formed in 1901, BSI was the world’s first National Standards Body and a
founding member of the International Organization for Standardization
(ISO). Over a century later it continues to facilitate business
improvement across the globe by helping its clients drive performance,
manage risk and grow sustainably through the adoption of international
management systems standards, many of which BSI originated. BSI’s
influence spans multiple sectors including Aerospace, Automotive, Built
Environment, Food, Healthcare and ICT. With over 81,000 clients in 181
countries, BSI is an organization whose standards inspire excellence
An excellent opportunity for a Group Head of Cyber & IT Security to
join our Group IT team based in Chiswick, West London has been established.
The Head of Cyber & IT Security is an exciting new opportunity,
absolutley pivotal in ensuring that unauthorised access or damage to
BSI’s technology estate is prevented.
A leadership position operating as part of BSI’s Group IT Leadership
Team, and managing a matrix team spread across UK and overseas, this
role requires broad security domain knowledge across infrastructure,
networks, Internet, www, applications and database environments.
Working with the Group CIO, and executive colleagues in all parts of
the organisation, the Head of Cyber & IT Security will include
responsibility and accountability for policies, strategy, planning,
standards and management of Cyber and IT Security for BSI.
This role will proactively manage all performance, and people matters
for direct reports, including; recognition, reward, performance,
recruitment, development planning, coaching and mentoring.
The Head of Cyber & IT Security will include responsibility and
•Lead and manage development, implementation and operation of Cyber
Security and IT Security policies, strategies, plans, standards,
processes and procedures.
•Develop and maintain plans to implement the information security strategy.
•Ensure the development of information security architectures (e.g.
people, processes, technology).
•Establish, communicate and maintain information security policies that
support the security strategy.
•Develop and implement processes for detecting, identifying, analyzing
and responding to information security incidents.
•Establish escalation and communication processes and lines of authority.
•Establish the capability to investigate information security incidents
(e.g. forensics, evidence collection and preservation, log analysis, interviewing).
•Assess the nature and scale of contractual Cyber Security and IT
Security risk and communicate them in BSI-relevant terms and language to
those required to judge and accept or reject such risks, with
recommendations or cautions where relevant.
•Participate actively in the collective management of the Group IT
organisation, owning and promoting Leadership Team policies, strategies,
plans and decisions and supporting the success of all objectives held by
members of the Leadership Team
•Engagement across Group IT and in the wider BSI to educate and
motivate colleagues to be enthusiastic and well informed on BSI-relevant
Cyber Security and IT Security matters.
•Provide a powerful communications channel between the Leadership Team
and direct reports, positively supporting agreed leadership initiatives
and decisions and providing full and representative feedback into the
•Translate business objectives into individual and/or team priorities.
•Proactively manage all performance, and people matters within the
team, recognise, reward and celebrate achievements of team members,
develop individuals and teams through coaching and mentoring.
You will have experience at a senior level in mid to large
organisations together with a deep knowledge and experience in
applications, infrastructure networks, database information security,
identity and access management, defense against malware and encryption.
You will have strong interpersonal skills plus the following abilities:
1.Relationship Management Development and maintenance of effective
relationships with security partners and internal stakeholder groups
including Internal Audit, Operational Risk and Information Security.
2.Communication Clarity of written and verbal communication skills with
the ability to clearly explain Cyber Security and IT Security issues and
solutions to technical and non-technical audiences.
3.Disciplined Work Approach The ability to co-ordinate multiple
activities across a span of control of IT and business colleagues with
high attention to detail.
4.Autonomy Ability to work independently and collaboratively with
business leaders, department heads and direct team.
5.Gravitas Strong credibility at both senior management and peer level.
6.Technical Strength Extensive technology security knowledge and
7.Completer Finisher Ability to meet targets and/or mitigate risks.
8.Influencing & Negotiation Expert in influencing and negotiating
9.Value Management High attention to value for money.
You will have one or more formal Cyber Security and IT Security
qualifications from the following: CISM, CRISC, CESG, SANS Institute-
GIAC CISA, CISSP, EC Council- Certified Ethical Hacker, EC Council- EC-
Council Certified Security Specialist
What we offer
We'll give you all the training and support needed to build your career
with our dynamic and growing organisation. We are an equal opportunities
employer and will consider flexible working in line with our
requirements for this role.
We offer a competitive starting salary and company car alongside 27
days annual leave with the opportunity to increase this to 30 days,
company-paid private medical insurance, an excellent company-contributed
pension scheme, and a wide range of flexible benefits that you can
tailor to suit your life-style.