Director, Cyber Transformation

Cyber security is critical to every organisation. As a senior member of the cyber practice, you will build strong relationships with clients and help them solve the latest cyber security challenges, driving commercial strategy and transforming the management of cyber risk.

Responsibilities

• Provide guidance and support to executives to develop practical, actionable cybersecurity strategies for their organisations.
• Leverage a risk‑based approach to emerging technologies and support organisations in becoming digitally enabled.
• Support organisations in designing secure‑proof transformation programmes.
• Assess and review the effectiveness of cyber operating models, both within the CISO function and embedded in IT/Business functions.
• Develop practice capabilities to deliver Cyber M&A projects, including repeatable processes, templates and talent.
• Build relationships with key client stakeholders and decision‑makers in cybersecurity and M&A transactions.
• Identify, socialise and pursue nascent opportunities for cyber practice growth within the UK marketplace.
• Build internal, cross‑offering relationships to sell and deliver multi‑faced M&A services.
• Conduct and lead assessments and benchmarking with industry‑leading practices in IT management, information security and cybersecurity.
• Perform business requirement studies, evaluate technology options to address business needs and improve operational efficiency.
• Work with multiple levels of client teams – from C‑level executives to on‑the‑ground professionals.
• Establish governance frameworks for clients, including strategies, organisations, policies, processes, standards and guidelines.
• Review and analyse client IT and cyber environments, from infrastructure and databases to applications.
• Review and analyse existing workflows and business processes in the context of cybersecurity.
• Work with internal teams to deliver complex engagements locally and overseas.
• Provide professional advice and work with client IT and cyber teams to design best‑of‑breed solutions.
• Collaborate with team leaders and members on project delivery, including research, analysis, advice and implementation.
• Demonstrate and develop leadership and professional capabilities in areas such as inspiring, purpose creation, agility, building diverse capability, influencing, collaborating, delivering value, managing change and quality, sales excellence, strategic thinking, problem‑solving and technical savvy.

Qualifications & Experience

• Bachelor’s degree or above in Computer Science, Information Technology, Risk Management, Engineering or related disciplines, preferably with information security or IT solutions implementation experience.
• Professional qualification (ITIL, OSCP, CISSP, CISA, CISM, CEH, ISO27K, COBIT, PMP, CIPT, CIPM, CBCP, ABCP, etc.) is an advantage.
• 10+ years of experience, preferably from consulting firms, global system integrators or large enterprises project teams.
• Practical experience in one or more of the following domains: M&A transactions, information security, cyber security, IT service management, IT optimisation, information management, digital transformation, cyber/disaster recovery, incident and crisis management.
• Specific industry experience (e.g., banking and finance, aviation, transportation, property development, pharmaceuticals) is an advantage.
• Technical skills: familiarity with GRC tools; security controls such as firewalls, proxies, segmentation, VPN, IDS/IPS, application firewalls, database controls, encryption; IOT/Mobile security best practices; cloud technologies (AWS, Azure, etc.) and their security best practices; data loss prevention solutions; identity and access management solutions; SIEM; CASB; SOC design, build and operation.
• Strong analytical mind and problem‑solving skills.
• Excellent project management and interpersonal skills.
• Consulting experience and understanding modern security concepts and principles, including cyber risk, strategy and maturity assessment, are beneficial.

Benefits

Hybrid working policy: based in one of our UK offices with flexible work options. You will have the opportunity to work locally, in virtual collaboration spaces, at client sites and remotely, depending on role requirements.