Chief Information Security Officer
This vacancy has expired and you can now no longer apply, to view similar current vacancies please use the link provided below.
View similar vacancies
| Location: |
Milton Keynes, GB |
| Salary: |
Competitive salary |
| Job Type: |
Permanent |
| Date Posted: |
3 February 2012 |
| Recruiter: |
Network Rail Ltd |
Network Rail is at the heart of revitalising Britain’s railway. From the rejuvenation of King’s Cross station and the upgrade and expansion of Thameslink, to Europe’s largest civil engineering project – Crossrail - we are involved in some of the most ambitious and diverse ventures the UK has ever seen. This will help us deliver the better railway that is vital for the economic prosperity of this country, transforming how people travel and make a massive difference to passengers and freight users right across Britain.
Department & how it relates to the role:
Telecoms Asset Management is a single, national, integrated organisation which will support core railway asset requirements, such as signalling, as well supporting the devolved routes for business voice and data services. The team are responsible for all of our telecoms assets, strategy and policy decisions including operating, maintaining and enhancing our infrastructure and delivery of the service to the customer.
The main purpose of this role is to establish and manage the business Information Security operations at Network Rail Telecom.
Key Accountabilities:
· Develop and delivery of a comprehensive telecoms information security programme, establishing processes through defined policies, procedures, standards and guidelines aligned to business expectations.
· Build strong working partnerships across the Company and leverage these relationships whereby all aspects of the security programme are met (risk, policy, standards, technical architecture/ strategy and accreditations).
· Full understanding and supporting the business model and stakeholder expectations and drive forward an established security model based around logical and physical security requirements. Sufficient security separation of NR mission critical services and any commercial traffic (including corporate LAN/WAN data and voice services)
· Adoption of a defined risk framework model across the business that identifies critical assets -correct measures are in place to the accepted risk level.
· Establishment of a defined compliance framework whereby appropriate controls are in place, effective and performing to the business requirements.
· Establish an audit framework and track the Risk register thus eliminating risk at the right time and level. Putting in place both logical and physical telecom network requirements for network assurance
· Establishing a monitoring and reporting capability for all security related incidents reporting back through risk and compliance channels through the operational level to senior management.
· Establishment, ownership and chairing of the Information Security Council process and function whereby agreed actions are followed through in conjunction with any IM initiatives.
· Protecting critical infrastructure and business information to the appropriate level as defined in the risk management process.
· Driving forward proactive threat management awareness campaign and capability.
Drive with Network Operations the Disaster Recovery and Business Continuity Plans as regards to protection and security of Company data.
Job Skills, Experience and Qualifications
Proven track record at managing information security teams in a highly diverse company.
Must have a proven track record demonstrating a keen understanding of security as a business enabler.
Subject matter expert in multiple areas of information security (governance, operations, application security, compliance, risk, incident management, cryptography, network architecture security).
Extensive knowledge of compliance frameworks.
Industry standard qualifications and good exposure to compliance frameworks including implementation and auditing techniques. (e.g. MSc, CISM, CISSP, CISA, QSA)
Strong IT background and experience in managing IT related projects.
Ability to drive change and improvement.
A strong influencer; confident, persuasive, determined.
Must have excellent verbal, written, and presentation communication skills, strong interpersonal skills and the ability to work effectively across project teams in a diverse environment.
You must be prepared to work in a complex, diverse, multicultural team.
Ability to work to tight deadlines and to prioritise under pressure.
At Network Rail, you have the chance to develop a long, rewarding career. There are many different career paths - and many opportunities to fulfill your potential. After all, we believe that investing in our people via training and development is one of the most effective ways of improving the safety, reliability and efficiency of the railways. You can expect competitive pay, a bonus scheme and a choice of contributory pension schemes. We also offer a generous annual leave package, plus up to 75% discount on season rail tickets.
Please note this role will be based in Central London until mid 2012 when the team relocates to Milton Keynes.
People who looked at this rail vacancy were also interested in...