Ciso

About GBG

GBG offers a range of solutions that help organisations quickly validate and verify the identity and location of their customers. Our market-leading technology, data and expertise help our customers improve digital access, deliver a seamless experience and establish trust, so that they can transact quickly, safely and securely with their customers online. We have over 1,000 team members across 15 countries and work with over 20,000 customers in over 70 countries. Some of the world's best-known businesses rely on GBG to provide digital services and keep the economy moving.

The Team

The InfoSec team are accountable for GBG’s Information Security, Security Architecture, Security Compliance, Security Awareness, Security Operations and Information Security Risk Management Activities. It is a highly motivated team of security professionals delivering cyber, cyber security operations and information security risk activities globally.

The Role

Best-in-class cybersecurity and its leaders focus on protecting and enabling the priorities of their enterprise, implementing a range of capabilities and competencies necessary to be successful in supporting a Secure & Trusted enterprise for our customers, our team members, and our business.

The Chief Information Security Officer enables and supports GBG’s digital business by driving critical initiatives that secure and protect our own enterprise, and that of the customers when using our products.

You must strike a balance between enabling the economic architecture of GBGs business (revenues, margin, user-experience & satisfaction) and the cyber threat our business, our customers, and our team members face.

You will provide the vision, leadership, and expertise, in building & leveraging our security resources expertise, guidance, and systems necessary to execute strategic and operational plans across all GBG’s products and information systems.

What you will do

• Defend GBG from Cyber threats by leading a proactive future-thinking team that applies standards and policies relevant to 21st-century threats.
• Define and Implement GBG’s information security strategy, functional plans and budgets
• Mature and evolve the enterprise-wide information security strategy to be more pragmatic and simpler to execute in markets
• Provide expert advice on all cyber matters to the GBG business, as well as expert advice to CTO’s on design, build, test and run of secure systems
• Seeks out secure solutions that will help the company delivery its Group Technology strategy with a Cloud first approach
• Make high impact decisions, under crisis management, or emergencies, such as major security incidents.
• Ensure the Security Operations Centre capability remains relevant to the scale and security of the business
• Develops strategies to improve the efficiency and efficacy of security and technological initiatives, rationalising and further developing the portfolio of technology solutions that improve GBG’s security profile
• Ensure the GBG’s supply chain comply with the required security standards, certifications and audit and compliance outcomes
• Manage the delivery of a cybersecurity framework, including defining and delivering policies, standards, and guidelines. This includes ensuring that staff at all levels are aware of their responsibilities.
• Ensure the GBG retains its ISO 27001 and other associated certifications
• Oversees the development, testing and where required the operation of new security and IT programs developed specifically for the company
• Seek out vendors that drive cost reduction, innovation and return significant value to the GBG
• Ensures the company's data remains secure by keeping up to date on the latest cyber security threats and finds ways to guard against them on an organisation-wide scale
• Coaches members of the Security and IT teams, particularly key leaders, to ensure alignment and strong focus on leadership and culture development
• Communicates with other executive members to make sure all parts of the company use security, IT and technology in the best ways possible
• Represent GBG on national and international conferences, community groups and forums, to remain current and to promote GBG’s stance.
• Play an effective role as a member of the CIO’s Senior Leadership Team
• Foster a culture of innovation and continuous improvement that encourages, engages, and supports a high level of professional development and personal responsibility

Requirements

Experience

• Demonstratable skills in Computer Science and Information Technology
• Strong Leadership, Excellent Oral Communication, Excellent Written Communication, Teaching Ability, Analytical Skills
• Proven experience at engaging, influencing, and managing stakeholders across organisational boundaries, up to a managing director/CEO level
• Experienced in leading, developing and motivating a team of subject matter experts

Knowledge

• An excellent understanding of best practice within information security and risk management including standards such as NIST, ISO, CIS, SoC
• Qualifications should include one or more of the following (or equivalent); Certified Information Manager (CISM), Certified Information Systems Security Professional (CISSP), Cloud or equivalent specific Security Training, ITIL (Foundational)
• An understanding of current and emerging threats and countermeasures and the organisational challenges to address these threats
• A strong practical knowledge of security technologies, and wider business solutions
• Knowledge of application security threats and countermeasures, especially in a cloud environment would be advantageous

Skills

• A collaborative leader, who can inspire and motivate team members, and in calm in the face of adversity, as you might find during a security incident
• A strategic mindset, able to articulate a strategy/plan, and empower a team to deliver
• Self-Starter, able to lead and drive change through GBG
• Good understanding of project management methodologies
• Good analytical skills, able to challenge the norm, and respectfully challenge others
• The ability to be pragmatic, to be able to balance the needs of GBG vs Security
• Ability to cut through organisational barriers to achieve an overall goal
• Excellent communication skills, both written and verbal. Able to represent complex and highly technical issues in a simple and easy-to understand format

Benefits

We have a vision to have the best and most engaged team members in the industry. People matter at GBG, they make us who we are. Every team member across all our locations makes a difference, everyone has something to contribute. Maybe you too could make a difference.

As part of our commitment to our team and flexible working approach, we have created a Work When and Where You Want Policy to give our team members choice and empowerment, and to support a balance in work and home life. Please ask your Talent Attraction Specialist for more information on this and our Family Friendly policy if you want to find out more!

Next steps

If you’re interested, please apply! We’re looking to hire the best and most engaged people into our business and we’ll make an offer once we’ve found that person.

As an equal opportunity employer, we are committed to providing fair opportunities for everyone regardless of age, gender, race, religion, sexual orientation, parental status or disability. Everybody is welcome and our inclusion and diversity programme, be/yourself, is designed to ensure that you can thrive. Please inform your GBG Talent Attraction Specialist if you require any reasonable adjustments to the interview process.