Group It Security & Data Protection Lead

  • £80000 - £100000 per annum + Benefits
  • City of London
  • Pearson Whiffin Recruitment

Group IT Security & Data Protection Lead - London (WFH) - Up to £100,000 plus benefits

I currently have a very exciting opportunity for a hands-on Group IT Security & Data Protection Lead to join a company that has recently become a large group. The group is made up of 5+ companies and you will play a key role in implementing and maintaining new and existing IT Security and data protection standards across the group.

They are looking for an individual who is passionate about I.T Security who can implement and maintain their current strategy and programme to ensure all their critical assets are adequately protected. To provide a breakdown of the role, 80% will be hands on I.T Security, 15% Data Protection and 5% Business Continuity.

This is a standalone role which will require the individual to be forward thinking and have excellent organisation skills. My client is particularly looking for someone with strong technical background in IT Security who has the confidence to put business cases forward to board level stakeholders and challenging decisions if required. Other parts of your role will require you to create and implement group security policies and procedures, standards and controls.


* Being the Group DPO and Security lead as the Subject Matter Expert on all areas of Data Protection and Cyber & Information Security

* Developing and embedding key operational processes and controls in Data Protection and Cyber & information Security

* Identify and assess Security and Data Protection related risks and provide proportionate mitigation options and advice to business risk owners for decision making

* Maintenance and reporting of the group wide security training program

* Collaborate with line management on an integrated business continuity management approach and plans

* Manage the timely Security Incident Response, including evaluating and reporting on business impacts of security incident trends

* Undertake current state assessments of security and data protection for each company and group

* Conducting risk and assurance assessments using standards-based controls, internally, the supply chain and third parties

* Manage and maintain group wide templates for legal agreements (NDAs, DPAs etc.).

Skills Required

* Strong ability mentor and communicate with staff from team leadership up to board level stakeholders who both technical and non-technical

* Proven experience from hands on IT Security background

* Hold one or more of the following; CISSP, CISA, CRISC, SANS GIAC, CIPP/E, CIPM

* Excellent communication and mentoring skills

* Experience with GDPR compliance implementation and monitoring

* Experience with industry frameworks in Information & Cyber Security and Business Continuity Management

* Expert knowledge and experience using one of the following frameworks policies, processes and controls; such as: NIST CSF, ISO27001, CSC CIS, ISO22301, TOGAF/SABSA

* Experience with technology architectures; (on-premises, hybrid and cloud technology); security operating models; security reference architecture and; controls design.

Due to Covid-19 this role will be home based until it is safe to return to the office which will be based in Central London.

Suitable candidates will be contact within 24 hours of application

Group IT Security & Data Protection Lead - London (WFH) - Up to £100,000 plus benefits

  • Advertiser: Agency
  • Reference: JP/P/ITSEC