Overview

We’re looking for a curious, versatile, adaptable and experienced information security or cyber specialist with strong leadership skills who enjoys the challenge of a varied and collaborative role.

You’ll enjoy problem solving, working with a wide variety of stakeholders, and enabling us to be creative in continuing to provide innovative products and services to support our business, and stay at the forefront of all things Information Security.

Essential

• Deep understanding and knowledge of cyber security principles, security standards and regulatory compliance and its application in a wide variety of organisations with a strong risk culture
• Ability to work collaboratively and hands-on with security and IT teams, actively engaging in the deployment, operation and troubleshooting of security tools, while supporting response and remediation efforts
• A good practical knowledge of security technologies and wider business solutions including identity and access management, SIEM, cloud technologies and data security
• Be a self-starter / self-motivated with the ability to lead, inspire and drive change through an organisation
• Have the ability to be pragmatic while balancing the needs of the business against security
• Ability to work with a variety of stakeholders across all levels and can adapt communication style to different stakeholders
• Have an ability to think and plan strategically and systematically while recognising the need to deliver to the business requirements
• Have previous experience working in a complex IT organisation encompassing service delivery, application development and IT infrastructure
• An understanding of best practice within Information Security and risk management including standards such as ISO27001, NIST, Cyber Essentials
• An understanding of legislation and regulations that impact information security. E.g. GDPR, PCI DSS
• Have previous experience in leading, developing and motivating a team
• An understanding of current and emerging threats and countermeasures and the organisational challenges to addressing these threats

Beneficial

• Experience of working in a financial services environment
• ISC2 CISSP or ISACA CISM, ISACA CRISC, CISA

Job Responsibilities

• Oversee Fleet’s Information Security processes, standards and procedures and optimise reporting of identified threats and vulnerabilities
• Maintain the Information Security Risk Register; identifying, assessing and mitigating information security risks (including security risks related to third parties and partners)
• Act as a point of contact for all Information Security related supplier queries and issues; providing expert opinion and communication during due diligence conversations
• Act as an Information Security point of contact for Business Continuity Planning and Disaster Recovery; this includes responsibility for initiation and execution of cyber business impact analysis
• Advise the wider organisation on security compliance and governance requirements
• Oversee Incident Response related to Information Security and ensure coherence and collaboration with the broader Technology response capability
• Liaise with external bodies and organisations to keep abreast of the threat landscape, emerging trends, technologies and legislation that have an impact on Information Security
• Assist as necessary to investigate security breaches and pursue associated disciplinary and legal matters
• Lead and manage a team of Security Analyst’s to ensure Information Security is managed effectively throughout the IT service delivery lifecycle
• Promote security awareness by collaborating with the relevant teams to provide training and awareness to the wider Fleet organisation.

Job Benefits

• Hybrid working of up to 2 days per week at home after initial training period
• 11% non-contributory pension scheme
• 25 days annual leave plus bank holidays, increasing with length of service
• An extra day's leave for your birthday
• Annual leave buying scheme of up to 5 days
• Discretionary annual bonus scheme
• Private Medical Insurance
• Life Assurance (4x basic annual salary)
• Enhanced Company sick pay
• Income Protection Scheme
• Paid time off to volunteer
• Generous family-friendly policies
• Electric Vehicle Salary Sacrifice Scheme
• Free annual flu jabs
• Eyecare vouchers
• Opportunity to gain formally recognised industry qualifications
• Retailer discount and cashback platform