Overview
Head of Information Security Jobs in England, United Kingdom at Sigma7
Title: Head of Information Security
Company: Sigma7
Location: England, United Kingdom
About Sigma7
Sigma7 is a dynamic new global risk information and services platform designed to enhance value by helping organizations dramatically improve the way they assess, mitigate, respond to, and recover from risk. In today’s environment of complex and interrelated risk, with emerging geopolitical, economic, environmental, and technological threats our comprehensive and technology-enabled services provide best in class capabilities, contextualizes and prioritizes threats, and measures success by providing tangible business outcomes.
With a client base including over 400 of the world’s most prominent organizations, over 300 employees worldwide, and six unique industry-leading brands, Sigma7 is reshaping the risk and resilience services industry. We support both commercial and NGO companies, as well as governmental and educational agencies in more than 75 countries. We have assembled a world-class leadership team of risk and security executives and technologists who lead colleagues throughout the US, the UK and in nine countries on five continents. Sigma7 brands include:
Sigma7 / Paragon
Intelligence Fusion
SIgma7 / RWH Myers
SIgma7 / Alaco
Sigma7 / RSM
S7 University
Job Summary:
The Head of Information Security will use strong leadership and problem-solving skills to advise the business, as applicable, on information security risks for the Sigma7 corporate environment and digital technology products; to perform the following duties:
Duties/ Responsibilities:
Serve as a focal point of contact for Sigma7 on information security.
Assist in development and then assume responsibility for ongoing maintenance of all information security policies and control development, including selection of applicable information security standards for Sigma7 corporate operations.
Lead delivery of relevant information security accreditation programs such as ISO27001, SOC, NIST etc.
Oversee applicable vendors and develop and manage internal configuration, deployment and operation of information security systems, such as firewalls, data loss protection controls, patching, encryption, email security, DLP, mobile device management, and endpoint protection.
Assist legal and compliance as well as business teams to evaluate vendor information security risk.
Work closely with risk & compliance teams to ensure that information security meets agreed standards.
Oversee internal and third-party logging and monitoring services.
Assist Information Technology Director, CTO and General Counsel to develop incident management program and serve as lead on incident response teams.
Develop and oversee program to monitor internal and external information security policy compliance by employees and vendors.
Develop and manage vulnerability scanning, pen testing, and operational control testing program (as Sigma7 matures).
Oversee information security audits, whether performed by Sigma7 or third-party personnel.
Assess current technology architecture for vulnerabilities, weaknesses and for possible upgrades or improvement.
Implement and oversee technological upgrades, improvements and major changes to the information security environment.
Manage and configure physical security.
Recommend information security awareness training for Sigma7 personnel and vendors.
Communicate information security goals and new programs effectively with the Executive Team.
Monitor and improveSigma7’s external digital security footprint.
Lead …
