<p>We are currently recruiting for a <strong>Chief Security Officer (CSO)</strong>, reporting to the Chief Technology Officer, to be responsible for ensuring the security, privacy, and compliance of Tunstall’s operations on a global scale.</p><p><strong>This role could work on a hybrid basis from any of our main hubs, Manchester city centre, Malmo, or Madrid.</strong></p><p><strong><br></strong></p><p><strong>What will you be doing in this role? </strong></p><p>As our <strong>CSO</strong>, you will safeguard the company’s internal infrastructure, but also influence and contribute to the security and resilience of our operations, assets, and reputation. This role is not just the shaping of strategy but the execution and be hands-on delivery of this strategy. You will help shape and build a comprehensive <strong>cyber security</strong> and <strong>information security</strong> <strong>strategy</strong>that aligns with business objectives and play a pivotal role in ensuring the security of our <strong>SaaS products</strong>.</p><p>The identification, assessment, and prioritisation of security risks associated with both internal and external factors and ensuring the compliance with all relevant laws and regulations related to security, including GDPR (and other relevant data protection regulations), are vital to the success of this role.</p><p>You will lead, inspire, and mentor the security and compliance teams globally, fostering a culture of continuous improvement, innovation, and excellence, as well as promoting security awareness throughout Tunstall, upskilling, and educating colleagues as required.</p><p><strong>We are a global business, and our business language is English, so you must be fluent in English to be considered for this role.</strong></p><p><strong><br></strong></p><p><strong>The Ideal candidate:</strong></p><p>To be successful in this role you will have <strong>proven experience in cyber and information security</strong>, in a <strong>leadership role</strong>. You will have a <strong>strong knowledge</strong> of <strong>software as a service</strong> (<strong>SaaS</strong>) products and on-premise technical solutions, with demonstrable experience of <strong>delivering security solutions for SaaS products</strong>. You will be able to demonstrate success in shaping, building, executing, and implementing a comprehensive <strong>cyber security</strong> and <strong>information security</strong> <strong>strategy</strong>. This role does require someone with in-depth technical cyber security and information security knowledge.</p><p>You will have <strong>excellent communication skills</strong>, both verbal and written, able to convey and ensure an understanding of complex messages. In addition, you will be a <strong>proven and collaborative leader</strong>, with a strong teamwork ethic, a <strong>can-do attitude</strong>, happy to be <strong>both strategic</strong> and <strong>hands on</strong>, and used to working in a fast-moving organisation, able to create structure and clarity from ambiguity. </p><p>Experience with a hardware provider / manufacturer as well would be highly desirable.</p><p><strong><br></strong></p><p><strong>What we offer:</strong></p><ul><li>Hybrid Working,</li><li>Competitive salary + potential bonus,</li><li>Car allowance,</li><li>30 days holiday + bank holidays,</li><li>A warm and welcoming team environment.</li></ul><p><strong><br></strong></p><p><strong>Some of your key tasks will be…</strong></p><ul><li>Develop, execute, deliver, and provide support on a comprehensive cybersecurity and information security strategy that aligns with business objectives,</li><li>Lead, mentor, and oversee a small global team responsible for security operations, incident response, and threat detection, fostering a culture of continuous improvement, innovation, and excellence,</li><li>Collaborate with the Group IT team to ensure the organisation is protected against cyber threats and maintain an effective incident response plan,</li><li>Play a pivotal role in ensuring the security of Tunstall’s SaaS products,</li><li>Identify, review, select, and manage our relationships with appropriate third-party security partners for our products,</li><li>Work closely with product development teams to embed security principles into the product lifecycle,</li><li>Ensure appropriate security assessments, penetration testing, and code reviews are conducted,</li><li>Ensure compliance with all relevant laws and regulations related to security, including GDPR, if applicable,</li><li>Stay informed about evolving cybersecurity regulations, standards, and best practices,</li><li>Collaborate with legal and compliance teams to address security and privacy concerns,</li><li>Identify, assess, and prioritise security risks associated with both internal and external factors,</li><li>Develop and maintain a risk management framework to mitigate risks effectively,</li><li>Establish and enhance incident response plans and conduct drills,</li><li>Evaluate and manage security risks associated with third-party vendors and partners, including those providing security solutions,</li><li>Establish robust vendor security assessment processes and due diligence procedures to ensure the security of third-party products and services,</li><li>Collaborate with external security vendors and consultants to enhance our security posture and stay current with industry best practices,</li><li>Promote a culture of security awareness throughout Tunstall, upskilling and educating colleagues as required,</li><li>Develop and track key performance indicators (KPIs) and metrics to measure the effectiveness of security initiatives,</li><li>Drive continuous improvement in security strategies and practices globally.</li></ul><p><strong><br></strong></p><p><strong>Key skills and experience:</strong></p><ul><li>Bachelor’s degree in computer science, Information Security, or a related field, or equivalent experience,</li><li>Proven experience in cyber security and information security, in a leadership role, </li><li>Strong knowledge of SaaS and on-premise technical solutions, </li><li>Proven experience in delivering security solutions for SaaS products, </li><li>Excellent understanding of compliance standards and regulations relevant to the industry, </li><li>Relevant certifications such as <strong>CISSP</strong>, <strong>CISM</strong>, or <strong>CISA</strong> are a plus, </li><li>Strong communication skills, both verbal and written,</li><li>Excellent leadership skills (ideally of a global team),</li><li>A collaborative individual, used to working cross functionally, able to influence and guide individuals,</li><li>Proven experience, and happy to be, both strategic and hands-on in approach,</li><li>Demonstrable experience of successfully driving change and transformation within a business.</li></ul><p><strong><br></strong></p><p><strong>A bit about us:</strong></p><p>Tunstall is a <strong>market-leading health</strong> and <strong>care technology provider</strong>.</p><p>We’re passionate about ensuring our team reflects the brilliant and unique qualities of the people and communities we support. Our <strong>incredible team of more than 3,000 colleagues</strong> provides <strong>life saving</strong> and <strong>life changing technology and services to millions of people in 18 different countries</strong>.</p><p>At Tunstall you’ll find a place where you’re valued and celebrated for being yourself. We empower our people to deliver the very best teamwork, innovation and thought leadership by creating an environment where we champion diversity and inclusion. We demonstrate our commitment to diversity and inclusion at each step. From our open, fair, and transparent recruitment processes, through to the many development and career growth opportunities we provide.</p><p><strong>Each Tunstall colleague has a superpower… they’re unique. No one else is them, and we think that’s special. Come and join our mission and be part of our team, our One Tunstall team.</strong></p> •
Last updated on Jan 2, 2024