Chief Information Security Officer (Basé à London)

Jobleads
London
2 weeks ago
Applications closed

Related Jobs

View all jobs

Chief Information Security Officer - CISO work from home

Chief Information Security Officer (PPB SA)

Chief Information Security Officer

Chief Information Security Officer - Managing Director

Virtual Chief Information Security Officer (vCISO)

Regional Information Security Officer

Amey is a leading provider of full life-cycle engineering, operations, and decarbonisation solutions, for transport infrastructure and complex facilities.

Working for us, you'll be delivering sustainable infrastructure solutions that enhance life and protect our shared future.

Our people are driven by a set of strong values, based on safety, insight, and collaboration.

The Opportunity

We have a fantastic opportunity for a permanent Chief Information Security Officer to join Amey's group functions.

As Chief Information Security Officer you will play a critical role within the organisation, tasked with safeguarding the company's information assets and technologies. This will involve the development and maintenance of a comprehensive security strategy that aligns with Amey's goals and objectives.

Responsible for identifying potential security threats and vulnerabilities and implementing measures to mitigate those risks. This includes sponsoring the implementation of advanced security technologies and controls, conducting regular security assessments, and ensuring that all employees are appropriately trained in security best practices.

Key responsibilities:

  1. Develop and deliver an information security strategy and improvement roadmap which will continuously enhance the organisation's risk profile, aligned with strategic business objectives.
  2. Develop and maintain an internal common control framework for information security and data protection which addresses all regulatory and commercial requirements.
  3. Ensure ongoing regulatory compliance with all applicable data protection legislation and maintain a healthy relationship with regulators to avoid financial penalties and enforcement actions.
  4. Develop and maintain an appropriately skilled team to deliver the published information security strategy and roadmap.
  5. Monitor appropriate sources of threat intelligence and perform horizon scanning to identify emerging cybersecurity threats and risks associated with new technology trends.
  6. Maintain appropriate levels of employee awareness across information security and data protection, delivering a broad compulsory training programme and targeted training initiatives.
  7. Understand the business appetite for framework accreditation and proactively target increased levels of certification.
  8. Elevate the organisation's profile and commitment to information security through continued external engagement.
  9. Sponsor and deliver technology and compliance initiatives aligned to agreed prioritisation.
  10. Contribute to the preparation of bid submissions and actively look to deliver additional value across information security aspects.
  11. Contribute to the scoping and delivery of broader projects which might be managed by other teams.
  12. Maintain strategic relationships with partners and suppliers that support the information security programme.
  13. Mentor and support the information security team, providing development and growth opportunities.


What you will bring to us:

  • Degree in either Computer Science, Information Security, Law or Privacy.
  • Professional qualifications and industry experience in Information Security / Cyber, such as CISM, CISSP and CISA are highly desirable.
  • Knowledge of current information security related standards or regulations such as ISO27001, Cyber Essentials Plus, GDPR, PCI-DSS, NIST.
  • Deep and ever evolving experience in Cyber and Information Security.
  • Real world experience of cyber-attack and recovery ideally in a leadership role.
  • General IT qualifications for breadth of experience.
  • People Management knowledge to effectively manage teams.
  • Financial knowledge to manage a cost centre.
  • Security accredited to SC level will be required within 6 months.


What we can offer you:

At Amey, we recognise that our biggest asset is our people. We offer flexibility, career development, a choice of benefits and support that help you through all life's ups and downs. It's the reason why Investors in People put us among the top 1% of employers.

Work-life Balance:

Work-life balance and flexibility are key for our success. We empower our people to make choices that are right for them, with hybrid, part-time and flexible work patterns.

Wellbeing:

Health cash plan, 24 GP, support and assistance programmes, wellbeing ambassadors and Wellbeing Wednesday, dental vouchers.

EDI:

At Amey we celebrate our people and all that they are. This is reflected in our Affinity Group networks, providing a community of support and connection.

Social Value:

You'll get 2 Community Involvement Days each year to volunteer for a charity of your choice and further opportunities to support fundraising initiatives.

Plus, a range of other great perks and benefits including:

  • Pension:Generous Pension scheme which we will contribute to.
  • Holidays:Minimum 25 days holiday + Bank Holidays.
  • Bonus:up to 20% of base salary.
  • Car / Car allowance:
  • Life assurance:4 x base salary.
  • Healthcare:private family cover via BUPA.
  • Choices:Our flexible benefits scheme is tailored by you.
  • Save with Amey:Our online voucher portal gives you access to thousands of discounts.


Application Guidance:

Amey is committed to Inclusion and Diversity. We welcome applications from all suitably qualified candidates. Please contact our recruitment team at to discuss any access needs or reasonable adjustments.#J-18808-Ljbffr

Get the latest insights and jobs direct. Sign up for our newsletter.

By subscribing you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Jobs

Job-Hunting During Economic Uncertainty: Cyber Security Edition

The cybe rsecurity sector sits at the forefront of today’s digital landscape, defending businesses and governments alike from increasingly sophisticated threats. From incident response and network security to cloud protections and zero-trust architectures, cyber security professionals tackle an ever-evolving array of challenges. Yet, even this mission-critical field is not immune to economic turbulence. When broader financial markets experience uncertainty—whether through global recessions, regional downturns, or unexpected macro events—the hiring climate can shift, making roles more selective and budgets tighter. For job seekers in cyber security, this can be disconcerting. You might discover that once-abundant vacancies have become scarce, competition for the remaining positions is fiercer, or company priorities pivot away from large-scale expansions toward essential, cost-justified security projects. At the same time, data breaches and cyberattacks don’t pause during economic slowdowns—if anything, they may escalate as bad actors exploit organizational vulnerabilities. This paradox means that while the market feels tough, demand for cyber security expertise remains robust. In this article, we’ll look at: Why economic uncertainty affects cyber security hiring trends. Strategies for staying competitive, even if the number of open roles shrinks. Methods to highlight your skills, adapt to shifting priorities, and network effectively. Approaches for preserving mental well-being during prolonged searches or uncertain feedback loops. How www.cybersecurityjobs.tech can help you find the ideal security-focused role. By proactively sharpening your skill set, tailoring your professional profile, and engaging with a focused community, you can secure a rewarding cyber security job—even when the broader market feels volatile.

Careers

How to Achieve Work-Life Balance in Cyber Security Jobs: Realistic Strategies and Mental Health Tips

Cyber security is one of today’s most vital and rapidly expanding sectors. As data breaches, ransomware, and other cyber threats continue to evolve, the demand for skilled professionals is surging across industries—from finance and healthcare to government and e-commerce. Whether you’re a penetration tester, security analyst, or threat intelligence expert, you play a key role in safeguarding digital infrastructure and sensitive information. This high-stakes environment, however, often comes with intense pressure. Long hours, constant vigilance, and an ever-changing threat landscape can make it challenging to find time for personal well-being. Many cyber security specialists report difficulty striking a sustainable work-life balance, unsure if it’s even possible in a field that never truly sleeps. Yet, as concerns about mental health and burnout become more pressing, professionals and employers alike are seeking better ways to combine career advancement with a fulfilling personal life. In this comprehensive article, we’ll explore how to achieve a work-life balance in cyber security. You’ll discover strategies for managing 24/7 threat alerts, the importance of realistic expectations, ways to maintain mental health in high-intensity roles, and tips for setting boundaries without compromising your professional growth. Whether you’re new to this dynamic arena or already an established specialist, these insights can help you thrive personally and professionally in the fast-paced world of cyber security.

Careers

Transitioning from Academia to the Cyber Security Industry: How Researchers Can Harness Their Skills to Protect Commercial Environments

Cyber security has become a mission-critical field in an era where data breaches, ransomware attacks, and sophisticated hacking techniques threaten businesses and public institutions alike. As digital transformation touches nearly every facet of modern life, the need for highly skilled individuals capable of defending systems and networks continues to grow. For PhDs and academic researchers with expertise in areas like cryptography, network security, or threat intelligence, this presents an exciting opportunity to deploy your analytical prowess in a high-impact, fast-paced commercial setting. In this guide we’ll explore how academics can successfully pivot from the research lab to the cyber security industry. Learn how to apply rigorous, theory-driven approaches to real-world challenges, from designing secure software architectures to neutralising advanced persistent threats. By embracing the industry’s urgency and end-to-end mindset, you can transform your scholarly insights into robust, market-facing security solutions that protect companies and users on a global scale.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.