Chief Security Officer

Our new role and responsibilities mean our risk posture is significantly changing. So, we are looking for an experienced security leader to be our Chief Security Officer and be dedicated to developing and driving our current security strategy and advocating for an organisation wide culture of cyber security awareness and best practices.
This is a varied and visionary role where there is an abundance of opportunities for the new Chief Security Officer to leverage the latest cyber security solutions, professional networks and innovations and create value for Companies House by enhancing our security resilience.
If you are interested in developing your professional network and career in the cyber security field and want to work for an organisation that offers flexible working and is people centric, then come join the team!
Job description

As Chief Security Officer youll be building relationships with every member of the Executive Board in order to protect our assets, ensure the integrity and confidentiality of our services and foster a culture of security across the organisation.
As well as leading the Cyber Security team, the role encompasses our:
physical and personnel security,
incident management, business continuity and disaster recovery
counter fraud, corruption and bribery remit.
On any given day you would be leading your teams in:
Developing and Implementing Security Policies: Designing and implementing comprehensive security policies and procedures in alignment with UK government standards and best practices.
Risk Management: Continually assessing security risks and vulnerabilities of our projects and services, and developing strategies to mitigate them effectively, ensuring the confidentiality, integrity, and availability of sensitive information and assets.
Security Operations: Overseeing day-to-day security operations, including incident response, threat detection, and security monitoring, to promptly identify and address security incidents.
Security Awareness and Training: Develop and deliver security awareness programs to educate staff on security best practices and promote a culture of security awareness throughout the organisation.
Compliance and Assurance: Ensure compliance with relevant security regulations and standards, conducting regular security audits and assessments to maintain a high level of security assurance.
Incident Management: Responding to incidents where there is a major threat to our services, people or reputation, plus ensuring the readiness of business continuity and disaster recovery plans.
Partner & Supply Chain Security: Managing relationships with external security partners and service providers, ensuring that contracted services meet security requirements and standards.
Continuous Improvement: Continuously evaluate and improve security processes, technologies, and practices to adapt to emerging threats and evolving security landscape. Ensure we learn lessons from any incidents.
Stakeholder Engagement: Collaborating with internal stakeholders (such as Digital, Intelligence and Operational colleagues) and external stakeholders (including other government departments, law enforcement agencies, and industry partners) to enhance security capabilities and share threat intelligence.
Reporting: Prepare regular reports on security metrics, incidents, and our compliance status for key governance forums and government authorities.
Financial Management: Planning and managing the security budget, allocating resources effectively to address security priorities and achieve security objectives.
Person specification

To fulfil the role of Chief Security Officer we are looking for someone who is an engaging leader who can guide through a time of change. Were looking for someone who can demonstrate the following experience and behaviours:
Experience:
Extensive experience in security management, preferably in governmental or highly regulated environments.
Successful track record of leading security teams and implementing robust security strategies.
Familiarity with UK government security policies, procedures and functional standards.
Certifications such as Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM).
Leadership Skills:
Strong leadership abilities with the capability to inspire and motivate teams.
Excellent communication skills, both verbal and written, to effectively convey security risks and strategies to stakeholders at all levels.
Ability to build collaborative relationships with internal and external partners.
Making Effective Decisions:
Exceptional analytical and problem-solving skills to identify security vulnerabilities and develop effective mitigation plans.
Strategic mindset to anticipate future security challenges and implement proactive measures.
Able to remain level-headed in the handling of incidents
Changing & Improving:
Ability to adapt to evolving security threats and regulatory requirements.
Flexible approach to work in a dynamic and fast-paced environment.
Open and progressive attitude to risk when assessing opportunities for change.
Behaviours

We'll assess you against these behaviours during the selection process:
Leadership
Changing and Improving
Making Effective Decisions