Our client is a multinational holding company specialising in communications, advertising, public relations, and related industries. It is recognised as the largest advertising agency group globally. The company places a strong emphasis on communications, customer experience, commerce, and technology.

Due to a large global transformation project, merging together all Technology and Security functions from a variety of businesses and acquisitions, they are expanding their Cyber Security team in the UK.

The Role:

The Cyber Security Delivery Initiatives Specialist will establish and facilitate the requirements for enhancing both security processes and systems, while maintaining alignment with functional and non-functional specifications. They will gather, analyse, and report on intricate security metrics to evaluate performance, steer delivery, and drive continuous improvement in Cyber Security and across the organisation.

Collaborating closely with IT, Operational Assurance, Operational Engineering teams, and Business Practice leads, the Specialist will have the responsibility of managing key internal and external stakeholders.

Responsibilities:

• Assess the existing controls, measures, and components that secure information assets and take personal responsibility for assisting operational owners in implementing necessary controls and risk mitigation strategies.
• Evaluate the compliance and effectiveness of the IT systems and internal controls with policies, regulations, and requirements.
• Conduct research, interpret, and assess compliance expectations against standards, security, contractual obligations, and government regulations.
• Establish standards for collecting and storing evidence of compliance.
• Analyse security controls and policies and interpret their impact on the security posture of information systems, including security and event logs.
• Plan and carry out formal evaluations of IT system components for control design and effectiveness, including efficiency and security protocols, development processes, and IT governance.
• Present findings and recommendations to the IT Managing Director and leadership team for addressing known issues and minimising risk.
• Ensure clear accountability for IT application compliance and security by independently evaluating if controls are installed and effective, and identifying necessary actions to prevent breaches.
• Provide support to operational owners.
• Hold operational teams accountable for compliance and security controls by scheduling meetings, maintaining accurate reporting and action tracking, and keeping a formal record of progress.
• Promote knowledge and drive cultural change by using expert knowledge, experience, and learning to emphasise the importance of operational compliance controls and ensure their comprehensive implementation.

Experience Required:

• Skilled security analyst with experience in delivering complex cyber security change programs within large organisations.
• Adept at working with cross-functional teams and identifying gaps in functional and non-functional design.
• Possesses the ability to handle multiple initiatives while quickly gaining an understanding of the security implications of business requirements.
• Experienced in conducting security gap analysis and delivering business analysis within technology projects.
• Strong leadership skills with a high level of competency in security business analysis and use of business analysis tools.
• Excellent communication skills and problem-solving abilities, along with the ability to work independently or as part of a team.
• Has a deep functional knowledge of the cyber security domain.

Package:

• Base Salary up to £70,000 (dependent on experience)
• Benefits - Pension, Healthcare, Life Assurance, etc