At a Glance
- Tasks: Lead cybersecurity strategy and protect data from evolving threats.
- Company: Thirteen Group, a dynamic organisation focused on security and compliance.
- Benefits: Competitive salary, generous annual leave, pension contributions, and health support.
- Other info: Flexible working with opportunities for professional growth and development.
- Why this job: Make a real impact in cybersecurity while leading a passionate team.
- Qualifications: Senior leadership experience in cybersecurity and knowledge of relevant frameworks.
The predicted salary is between 90008 - 90008 £ per year.
Thirteen Group is on the lookout for a Head of Cyber and Information Security to lead our information and cybersecurity strategy. The world of cybersecurity changes fast, so we’re looking for someone with in-depth knowledge to continuously ensure Thirteen’s assets are secure, compliant and resilient against evolving threats. You’ll be expected to work a minimum of two days a week from our fantastic head office at Hudson Quay in Middlesbrough. Flexibility is important, so there may be times when additional presence at the office is required to meet business and team needs.
Thirteen Benefits
- Salary – £90,008 per annum
- Annual leave – starting at 28 days and rising to 31 days after three years, a day off for your birthday, plus bank holidays
- Pension – up to 17% contributions (flexible contribution rates of up to 7% colleague and up to 10% employer)
- Simply Health – save money on common health expenses and get access to health and wellbeing support services
- T’dar – our Discount and Reward platform giving you huge savings on everyday brands
- Opportunities to buy and sell annual leave
Key Responsibilities
- In this strategic role, you’ll lead on cyber defence to keep our customers & colleague’s data safe.
- You’ll ensure that we undertake regular internal audits to highlight vulnerabilities on our servers, platforms and end user compute devices and support teams to remediate.
- Ensure we meet and maintain key regulations and standards like Cyber Essentials Plus, ISO27001:2022, with strong alignment to the NCSC’s Cyber Assurance Framework and NIST.
- Lead on cyber threat intelligence using trusted sources to stay ahead of emerging threats and proactively put measures in place.
- If (or when) the time comes, you’ll manage and co-ordinate our cyber incident response working with our external partner.
- Manage, support & evolve a team of two specialists in cyber security and the groups Data Protection Officer and wider DPO function.
- Drive awareness and training initiatives to build a culture of security and compliance across Thirteen.
- Support the delivery of DSAR and SAR compliance activities with the nominated DPO and ensure data protection obligations are met.
About You
- You’ll have senior leadership experience in cyber and information security, working within a complex organisation.
- We’d welcome applications from candidates outside of the social housing sector.
- Extensive knowledge of cybersecurity frameworks, incident response, threat intelligence and data protection legislation.
- It would be a bonus if you had CISSP, CISM, or CISA.
- A fantastic people manager and a clear communicator. You’ll be able to explain security concepts to different audiences in a way they understand.
- A track record of delivering innovative and proactive cybersecurity solutions.
- Strong problem-solving skills are important, as you’ll be dealing with complex security issues.
Head of Cyber and Information Security employer: Thirteen
Thirteen Group is an exceptional employer, offering a dynamic work environment at our modern head office in Hudson Quay, Middlesbrough. With a strong focus on employee wellbeing, we provide generous benefits including up to 31 days of annual leave, a robust pension scheme, and access to health support services. Our commitment to professional growth and a culture of security ensures that you will thrive in your role while making a meaningful impact in the field of cybersecurity.
StudySmarter Expert Advice🤫
We think this is how you could land Head of Cyber and Information Security
✨Get Involved in the Cybersecurity Community
Diving into the cybersecurity community is key for landing that full-time gig. Join forums like Reddit's r/cybersecurity or attend local meetups to connect with industry veterans and other job seekers. Networking is everything in this field—don’t just be a passive lurker!
✨Show Off Your Skills with Capture the Flag Competitions
Participate in Capture the Flag (CTF) competitions; these are not just a fun way to boost your skills but also a chance to showcase your talent to potential employers. Many companies, including Thirteen, love seeing candidates who actively engage in these challenges.
✨Tailor Your Online Presence
Make sure your LinkedIn and any professional profiles reflect your cybersecurity expertise. Share your projects, whether they’re personal or from a previous role, to catch the eye of hiring managers. This is how they’ll find your passion and commitment to the field!
✨Apply Directly Through Thirteen
Don’t forget to head straight to our website and check out any openings for cybersecurity roles at Thirteen. Applying directly can sometimes give you an edge, especially if you can mention that you've been following our work or engaging in the community.
We think you need these skills to ace Head of Cyber and Information Security
Some tips for your application 🫡
Show off your technical skills:In cybersecurity, it's crucial to highlight your technical prowess. Make sure your CV showcases specific skills like network security, penetration testing, or threat analysis. If you have relevant certifications (like CEH or CISSP), pop those on the front page to grab attention!
Tailor your portfolio for the role:Even for a full-time role, a portfolio can set you apart. If you've worked on any cybersecurity projects—be it CTF challenges, security assessments, or research papers—include these in your application. This demonstrates not just your skills, but also your hands-on experience!
Use real-world examples:When writing your cover letter, don’t just stick to your qualifications. Share real-world examples of how you’ve tackled security issues or vulnerabilities. This gives the hiring team at Thirteen insight into your practical problem-solving abilities and makes your application memorable.
Demonstrate your passion for cybersecurity:Cybersecurity is an ever-evolving field, so show us that you’re always learning! Mention any recent courses, webinars, or industry events you’ve attended. This not only exhibits your enthusiasm but also signals to Thirteen that you’re committed to staying ahead in the game.
How to prepare for a job interview at Thirteen
✨Sharpen Your Technical Skills
For a role in cybersecurity, it’s essential to be up-to-date with the latest tools and techniques. Brush up on your knowledge of firewalls, intrusion detection systems, and vulnerability assessment tools. Be ready to discuss specific scenarios where you’ve applied these skills, as hands-on experience can really set us apart in interviews.
✨Prepare for Scenario-Based Questions
Expect the interviewers at Thirteen to throw in some hypothetical situations to see how you’d handle them. Think about common security breaches or incidents and be prepared to explain how you would respond. This not only shows your problem-solving skills but also your understanding of real-world cybersecurity challenges.
✨Highlight Your Certifications
Certifications like CompTIA Security+, CISSP, or CEH can give you a significant edge in a full-time role in cybersecurity. Make sure to mention these during your interview and be prepared to discuss what you learned through those certifications and how they relate to the position at Thirteen.
✨Show Your Passion for Cybersecurity
Since you’re going for a full-time gig, showing genuine enthusiasm for the field can make all the difference. Share any personal projects, blogs, or communities you’re part of that relate to cybersecurity. This not only showcases your passion but also your commitment to staying engaged in this ever-evolving field.
