Cyber Security Lead - #1801435

Sense Data and Tech team are currently recruiting for a Cyber Security Lead. This permanent opportunity will work on hybrid basis from our Sense Touchbase Pears office in Selly Oak, Birmingham, working 37.5 hours per week.

The successful candidate will work across all our internal teams and technology suppliers, assessing and monitoring their security measures and ensuring that Sense cyber security risks are managed appropriately. This will include establishing and leading a Cyber Security Governance Group (CSGG). You will be responsible for managing Sense Cyber incident response plans and pro-active training of everyone in Sense to ensure a good level of cyber risk awareness and mitigation.

This is an exciting time for data and technology at Sense. We are embarking on a technology and data driven transformation to use data to make better, faster decisions, to use technology systems drive efficiency and automation, and create a place where simple, intuitive technology frees up our people to do what they do best – be themselves.

Key Responsibilities

• Develop and manage the cyber security risk management plans for Sense
• Manage a register of all Sense technology suppliers, and conduct routine cyber security assessments based on risk level
• Conduct regular audits and reviews of activities and threat protection.
• Develop and maintain training programmes for all staff using a risk-based approach, including enhanced training for system administrators.
• Deliver phishing simulation exercises and other cyber security training exercises
• Plan and deliver cyber security focus week(s), working closely with data protection teams and internal communications teams.
• Represent Cyber Security within Technology Change Approval Board (CAB) and Technical Architecture Group (TAG) processes
• Manage specialist Cyber Security suppliers, including suppliers for penetration testing, security evaluation and cyber insurance, in collaboration with teams across the business.

Key skills and experience

• Good knowledge of Cyber Security principles and threats.
• Good stakeholder management and communication skills
• The ability to communicate effectively using non-technical language
• Supplier management skills, including the ability to work in a multi-supplier environment
• Knowledge of Cloud architectures and the principles of virtual networks and Software-as-a-service from a security context
• Experience of achieving Cyber Essentials Accreditation and/or NHS DSPT or equivalent
• A good knowledge of Cyber Security principles, and the implications of varied technology architectures, for example cloud solutions, software-as-a-service, zero trust architecture
• Experience of working with suppliers, including evaluating the Cyber Security implications of proposed solutions and managing assurance reviews and exercises
• Experience of working in a large multi-site organisation with a diverse range of user knowledge and technology usage
• Experience of using Cyber Security tools and systems, ideally using Microsoft products, or working within Microsoft ecosystems
• Experience of training non-technical staff in aspects of Cyber Security

About Sense

For everyone living with complex disabilities. For everyone who is deafblind. Sense is here to help people communicate and experience the world. We believe that no one, no matter how complex their disabilities, should be isolated, left out, or unable to fulfil their potential. Sense are proud to be a disability confident leader.

Working at Sense can be incredibly rewarding; we offer the opportunity to work in a large, diverse and successful charity where people can develop their skills, knowledge and careers in a supportive and flexible environment. In addition, we have excellent training and development, the opportunity for you to join our Group Personal Pension scheme and a generous annual leave entitlement.