Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead cybersecurity efforts and manage security posture for a global insurance client.
- Company: Join a long-standing global insurance firm focused on enhancing their security function.
- Benefits: Enjoy a competitive salary, bonuses, and benefits with a hybrid work model.
- Why this job: Be at the forefront of cybersecurity transformation and make a real impact in a dynamic environment.
- Qualifications: Extensive experience in information security and team management is essential.
- Other info: This role requires a technical background and offers opportunities for professional growth.
The predicted salary is between 100800 - 116800 £ per year.
LOCATION: London 3-4x a week on-site
£120,000 - £140,000 + Bonus + Benefits
I am working exclusively with a long standing client of CyberApt Recruitment (Global Insurance client) that are looking to add a Director level RISO to their growing security function reporting directly into the Global CISO.
THIS ROLE REQUIRES AN INDIVIDUAL TO HAVE A TECHNICAL BACKGROUND.
The Regional Information Security Officer (RISO) leads and manages the cybersecurity posture at one of three global regions of business operations and reports directly to the Global Chief Information Security Officer. The RISO defines and cascades the global information security policy in their scope and ensures its application. The RISO has an advisory, leadership, delivery, assistance, training, and alerting role with the management of the business. The RISO ensures proper alignment with the companies’ global cybersecurity strategy and acts as primary liaison between the global information security office and the regional business and IT leadership, helping the lines of business understand and implement security policies and processes while also helping translate business priorities to the global information security office.
The Regional Information Security Officer ensures the implementation of operational processes and solutions to guarantee data protection and information systems’ security level. Through relationship management, influence, and negotiation, the RISO supports both the core information security function and helps lines of business improve the global information security program’s maturity by encouraging collaboration, ensuring relevance, and driving results.
Key Accountabilities
- Defining and implementing a Cybersecurity Strategic Plan incorporating entities in-scope
- Determining methods to implement, enforce and advise entities in-scope on cybersecurity related issues. Mitigating risk exposure at entities in-scope
- Leading cybersecurity transformation journey to put in place at entities in-scope
- Ensuring well-informed security decisions are taken, escalating risk, when required to the executive management. Ensuring the provisioning of adequate resources
- Support information security awareness and training initiatives
- Ensuring effective governance is in place within the local operation and business environments supporting the Global CISO directives and policies.
- Leading the design and operation of related compliance monitoring and improvement activities
- Leading or commissioning information security risk assessments and controls selection activities
- Acting as liaison with auditors and regulators
- Liaising with and offering strategic direction to related governance functions
- Provides second, third line information and cybersecurity support, triaging incidents in accordance with the incident response plan.
Qualifications
- Extensive information security experience including senior security leader responsible for overall security function
- Team Management & Leadership
- Ability to engage with Business Leaders of his/her perimeter as well as with CIO/COO/CISO hierarchy. Organized, self-sufficient with ability to work in a matrixed organization regionally and drive change.
- Experience of managing teams and developing staff
- Demonstrated experience understanding security risks, identifying gaps, and creating risk-mitigating and remediation plans, drawing up IT Security roadmap.
- Demonstrated experience understanding technical aspects of information and IT technology and core security components.
- In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management etc.
- Good grasp of PCI-DSS, ISO 27001, NIST, UK Cyber Essentials, GDPR, POPIA, and other security norms, regulations, standards & frameworks.
- One or more of the following or similar certifications is a plus: CISM, CISSP, CCISO, CRISC
Personal Attributes
- Executive presence, and the ability to foster relationship management, negotiate and influence.
- Practical and risk-based approach for problem solving and the ability to think ‘outside the box’ to find solutions which balance the need to run and grow the business and keep it safe.
- Ability to partner with the lines of business, see gaps as opportunities, and enable the business leveraging a risk-based approach compared to an audit-based approach
- Effective communications skills, including both written and verbal communication skills, and the ability to translate security principles into business terms.
- Foundational technical expertise, including both business acumen and strategic thinking, as well as the ability to identify issues and provide innovative problem solving.
- Passionate about driving and sustaining change through committed leadership.
Regional Information Security Officer employer: CyberApt Recruitment
Contact Detail:
CyberApt Recruitment Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Regional Information Security Officer
✨Tip Number 1
Network with professionals in the cybersecurity field, especially those who have experience in regional information security roles. Attend industry conferences or local meetups to connect with potential colleagues and learn about the latest trends and challenges in the sector.
✨Tip Number 2
Familiarise yourself with the specific cybersecurity frameworks and regulations mentioned in the job description, such as PCI-DSS, ISO 27001, and GDPR. Being able to discuss these in detail during interviews will demonstrate your expertise and commitment to the role.
✨Tip Number 3
Prepare to showcase your leadership skills by gathering examples of how you've successfully managed teams and driven change in previous roles. Highlighting your ability to influence and negotiate with business leaders will be crucial for this position.
✨Tip Number 4
Stay updated on the latest cybersecurity threats and trends. Being knowledgeable about current cyber-attack techniques and risk management strategies will not only help you in interviews but also show your passion for the field.
We think you need these skills to ace Regional Information Security Officer
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your extensive information security experience and leadership roles. Emphasise your technical background and any relevant certifications like CISM or CISSP that align with the job requirements.
Craft a Compelling Cover Letter: In your cover letter, clearly articulate your understanding of cybersecurity concepts and your experience in managing teams. Use specific examples to demonstrate how you've successfully implemented security strategies in previous roles.
Showcase Your Communication Skills: Since effective communication is key for this role, ensure your application reflects your ability to translate complex security principles into business terms. Highlight instances where you've successfully engaged with business leaders.
Highlight Problem-Solving Abilities: Discuss your practical and risk-based approach to problem-solving in your application. Provide examples of how you've identified security gaps and developed remediation plans, showcasing your strategic thinking.
How to prepare for a job interview at CyberApt Recruitment
✨Showcase Your Technical Expertise
As a Regional Information Security Officer, it's crucial to demonstrate your technical background. Be prepared to discuss specific cybersecurity technologies and frameworks you've worked with, such as PCI-DSS, ISO 27001, or NIST. Highlight any relevant certifications like CISM or CISSP to reinforce your qualifications.
✨Understand the Business Context
This role requires a strong understanding of how cybersecurity aligns with business objectives. Research the company's operations and be ready to explain how you can help bridge the gap between security policies and business priorities. Use examples from your past experience to illustrate your ability to translate complex security concepts into business terms.
✨Demonstrate Leadership Skills
The RISO position involves leading teams and influencing stakeholders. Prepare to share examples of how you've successfully managed teams, driven change, and fostered collaboration in previous roles. Emphasise your ability to engage with senior leaders and navigate a matrixed organisation.
✨Prepare for Scenario-Based Questions
Expect scenario-based questions that assess your problem-solving skills and risk management approach. Think about past incidents you've handled, how you triaged them, and the outcomes. Be ready to discuss your thought process and the strategies you employed to mitigate risks effectively.
