Regional Chief Information Security Officer (CISO)

Sodexo
Manchester
9 months ago
Applications closed

Related Jobs

View all jobs

Regional IT Manager

Regional IT Manager

Regional Network Performance Analyst

IT Service Delivery Manager

Lead Network Engineer / Architect

Information Security Manager

We are seeking a dynamic and strategic

Regional Chief Information Security Officer

(CISO) to lead the safeguarding of Sodexo's technology, data, and digital assets across the UK & Ireland. This pivotal role is responsible for setting and delivering cybersecurity strategies that align with business objectives, ensuring compliance with all relevant laws, regulations, client contracts, and Group security standards.
Join Sodexo and be part of something greater. You belong in a team where you can act with purpose and thrive in your own way.
For more information on Sodexo Careers please visit Sodexo Careers
Main Responsibilities
Leadership, Strategy & Governance

( A visible security function empowered by a clear mandate from the CISO )
Direct and execute a risk-based Information & Cyber Security Strategy and Roadmap that implements security initiatives delivering the greatest risk reduction against business security risks.
Risk & Compliance

( Implement controls optimized for the greatest risk reduction )
Develop and present comprehensive cybersecurity risk reports to the Enterprise Risk Management Committee and the RLT, translating technical information into business-relevant insights.
Develop, implement, and maintain security processes and policies, identifying and reducing risks, limiting liability and exposure to informational, physical, and financial risks.
Security by Design

( Embed security into new projects and capabilities by adopting a security-first mindset )
Ensure security controls are embedded into the software development lifecycle (SDLC) and collaborate within TDDI to ensure secure coding practices and robust security architecture.
Supply Chain

( Assurance that our key dependencies are secure and resilient )
Implement and manage robust third-party risk management to provide accurate and actionable information on supplier risk.
Cyber Defence

( People, Processes, Technology, and Partners that help detect threats, contain, mitigate, respond, and recover from cyber threats )
Direct the implementation of measures to improve cybersecurity culture within the region and reduce people risk.
The Ideal Candidate
Extensive experience
Strategic Planning : Developing long-term security strategies aligned with organizational goals.
Change Management : Leading change initiatives to improve security posture.
Performance Metrics : Establishing and monitoring KPIs to measure security program effectiveness.
Technical Expertise : Deep understanding of cybersecurity technologies such as firewalls, intrusion detection, encryption, and network security protocols.
Regulatory Compliance : Knowledge of laws, regulations, and standards like GDPR, Cyber Essentials, ISO/IEC 27001, and ensuring compliance.
Incident Response : Developing and managing incident response plans and managing security breaches.
Security Architecture : Designing and implementing robust security architectures.
Project Management : Managing security projects from planning to execution within budget and time constraints.
Package Description
Competitive salary + 20% bonus + Car allowance
Hybrid working - 2-3 days in the office
Joining Sodexo means being part of something greater.
We value you for who you are; you can act with purpose and make an impact through your actions; and thrive in your own way.
We also offer 20+ Sodexo benefits, including a retirement plan, discounts at over 1,900 brands, gym discounts, and a 24/7 employee assistance program for support with emotional, legal, and financial issues.
For more details on our benefits, please see attached.
Ready to be part of something greater? Apply today!
About The Company
At Sodexo, our purpose is to create a better everyday for everyone to build a better life for all. As the global leader in services that improve the Quality of Life, we operate in 55 countries, serving over 100 million consumers daily through our On-Site Food and FM Services, Benefits & Rewards Services, and Personal & Home Services.
We are committed to building a future workplace, promoting equal opportunities, and celebrating diversity. We are an inclusive workplace where everyone is welcome and encouraged to be their best. We recognize our ongoing journey with diversity and inclusion and welcome applications from underrepresented backgrounds.
We are a Disability Confident Leader employer, committed to changing attitudes towards disability and ensuring disabled people can fulfill their aspirations. We run a Disability Confident interview scheme for candidates with disabilities who meet the minimum criteria.

#J-18808-Ljbffr

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Jobs

Penetration Tester Jobs in the UK: What Employers Actually Want in 2026

The demand for skilled professionals in cyber security has never been higher, and penetration testers sit at the very heart of this rapidly evolving industry. As organisations across the UK continue to digitise their operations, protect sensitive data, and defend against increasingly sophisticated threats, the need for ethical hackers has grown dramatically. If you are considering a career in this field—or looking to advance within it—it is essential to understand what employers are really looking for in 2026. This guide breaks down the current expectations, required skills, certifications, and practical experience that can help you stand out in a competitive job market.

Jobs

SOC Analyst Jobs UK 2026: Salaries, Skills & How to Get Hired

Cyber security is one of the UK's fastest-growing career paths — and SOC analyst is where most people begin. It's in high demand, genuinely accessible, and you don't need a degree or years of experience to get started. But knowing what UK employers actually want in 2026 — what they pay, which certs matter, and how to stand out — is a different matter. This guide covers all of it.

Careers

How Many Cyber Security Tools Do You Need to Know to Get a Cyber Security Job?

If you are trying to build or move forward in a cyber security career, it can feel like the list of tools you are expected to know never ends. One job advert asks for SIEM platforms, another mentions penetration testing tools, another lists cloud security, threat intelligence platforms, endpoint detection, scripting languages and compliance frameworks. Scroll LinkedIn and it gets worse. Everyone seems to “know” dozens of tools, certifications and platforms. Here is the reality most cyber security hiring managers agree on: they are not hiring you because you know every tool. They are hiring you because you understand risk, can think like an attacker and a defender, follow process, communicate clearly and make good decisions under pressure. Tools matter — but only when they support those outcomes. So how many cyber security tools do you actually need to know to get a job? For most job seekers, the answer is far fewer than you think. This article explains what employers really expect, which tools are essential, which are role-specific and how to focus your learning so you look credible, not overwhelmed.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.