Information Security Leader (EMEA) - London, UK

Kia Ora, Hola, สวัสดี, Guten Tag!

We are looking for a dynamic and focused leader to manage the security operations and deliver to the security outcomes that improve the security posture and maturity in the EMEA region.

The Information Security Leader (EMEA) will have a strong understanding of security operations and its delivery in a complex operational environment, which includes a good working knowledge of privacy principles and the regulatory environment affecting the regional business. This role requires a strategic mindset, strong leadership abilities, and extensive experience in managing information security in complex, siloed business structures. 

Reporting directly to the Chief Information Security Officer (CISO), you will have a solid understanding of the business drivers affecting security within the company and provide relevant expertise, guidance and support for the Information Security Operations team in region. This includes but not limited to implementation, operation, and maintenance of the information security controls, processes and procedures, aligned to Policy and security outcomes.

This role will be the on the ground leadership of a team of security analysts and engineers, ensuring they possess the necessary capabilities, resources, and support to protect FCTG assets, maintain regulatory compliance, and effectively manage security risks within the region.

Responsibilities include...

• Implementing the vision for the next stage of evolution for our security program, including improving our regional security posture and mentoring our growing and talented team of security specialists.
• Responsibility for designing and setting regional processes and procedures in securing the region, while collaborating and influencing global security operations.
• Implementing a secure, scalable infrastructure that can function in the highly regulated data/personal privacy world.
• Ability to think both long term and short term.
• Lead a team, with proven technical hands-on experience building out operational processes and procedure in managing cyber hygiene activities.
• Broad exposure both within and outside the organization by interfacing with industry colleagues, vendors, key stakeholders, and external partners.
• Responsible for security incident response, threat intelligence and participating in ongoing audit or compliance activities.

What we are looking for...

• 7+ years of experience in information security or technical operations role.
• 2+ years in an information security leadership role.
• Ability to analyse and simplify complex problems, evaluate them systematically, identify causal relationships and construct frameworks for problem solving.
• In-depth knowledge of Risk Frameworks such as ISO 31000.
• In-depth knowledge of Security frameworks such as ISO27001/2, PCI DSS, SCA, SOC 2, etc.
• Knowledge of regional frameworks such as Cyber Essentials Plus.
• Legal contract review experience.
• Experience and ability in creating meaningful security reporting.
• Ability to quickly and accurately analyse technical and procedural issues and take appropriate action to resolve.
• In-depth experience in managing and running Incident Response activities.
• Experience with managing and designing procedures in running security operations activities to detect, analyse and respond to events, incidents and alerts, across security tools providing Logs from, IPS/IDS, Anti-DDoS, SIEM, Data Leakage Prevention, Proxy, Automation & Orchestration, Anti-Virus, CASB and Firewall.
• Experience in security controls and toolsets applicable to secure infrastructure on major Cloud platforms and have knowledge of cloud security best practices and industry security requirements.
• Experience in managing a mix of technical teams or varying skills maturity.
• Demonstrated highly developed oral and written communication skills, with the ability to communicate comfortably with large groups and executives, and to articulate security operations vision and solutions to non-technical stakeholders.
• Ability to manage and priorities workloads and those of the team to deliver to security outcomes on a day-to-day basis.
• Prior hands-on experience in managing security analysts and security engineers individually and or as part of a Security Operations Centre.
• Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate information security and risk-related concepts to technical and non-technical audiences at various levels, ranging from board members to technical experts.
• Up-to-date knowledge of information security risk management and cybersecurity technologies, methodologies, and trends in both business and IT.
• Proven track record and experience in successfully executing programs that meet the objectives of excellence in a dynamic business environment.
• Strong analytical and problem-solving skills with a proven ability to make decisions and lead through high- pressure, high-stress situations.

Our benefits...

• Discounted travel for family and friends - booked by our in-house travel team – as part of Flight Centre Travel Group, you have access to industry rates and discounts for you and your friends and family.
• Career progression – as part of Flight Centre Travel Group with a global brand network spanning 30+ brands and 20+ countries you are empowered to create clear career pathways and have access to the training and support needed to achieve your goals.
• Fun culture with industry-renowned social events (think monthly award nights, global conferences, end-of-financial year balls + more).
• Active Hour – an hour set aside each week to spend on your well-being.
• Bronze-level health cash plan - claim cash back against a range of medical services including dentistry, optical, and chiropractic.
• Plus so much more (company-matched charitable giving, excellent pension scheme, an active hour each week etc.)

#LI-LR1#LI-Onsite