Regional Information Security Officer

Tunstall is a market-leading health and care technology provider.

We’re passionate about ensuring our team reflects the brilliant and unique qualities of the people and communities we support. Our incredible team of more than 3,000 colleagues provides life saving and life changing technology and services to millions of people in 18 different countries.

At Tunstall you’ll find a place where you’re valued and celebrated for being yourself. We empower our people to deliver the very best teamwork, innovation and thought leadership by creating an environment where we champion diversity and inclusion. We demonstrate our commitment to diversity and inclusion at each step. From our open, fair, and transparent recruitment processes, through to the many development and career growth opportunities we provide.

Each Tunstall colleague has a superpower… they’re unique. No one else is them, and we think that’s special. Come and join our mission and be part of our team, our One Tunstall team.

We are currently recruiting for aRegional Information Security Officer, reporting to the Global Chief Information Security Officer (CISO), to oversee the information security function across the countries and Tunstall entities in their scope.

This is an incredibly exciting time to join Tunstall as we embark on an exciting period of transformation. You will be joining a recently created and growing global Information Security team within Tunstall and will be in a leadership position playing a key part in the success of this transformation.  

This role would be based at either our Manchester office or our Whitley site (DN14 0HR) working on a hybrid basis. We are flexible on number of days in the office.

What will you be doing in this role?

As ourRegional Security Officer, you will be responsible for implementing, running and overseeing the information security function across the countries and Tunstall entities in your scope, ensuring consistent and strong information security management in support of our business goals and in line with the global Information Security strategy and direction. You will be the main point of contact for security matters in your region and analyse the effectiveness of the security controls of the countries and Tunstall entities in scope, proposing plans for improvement in line with the global strategy.

Enforcing the global cyber risk framework, aligning and influencing business and technology areas to prioritise and mitigate key cyber risks and maintaining the risk registry, in alignment with key stakeholders, is vital to the success of this role.

The Ideal candidate:

To be successful in this role you will have substantial experience in IT and Technology, with considerable experience in a leadership role in cybersecurity, within complex multinational organisations. You will have a deep understanding of the cybersecurity market, trends, risk frameworks and security standards and regulations.

The successful candidate will be proactive, with excellent verbal and written communication skills, able to coach and motivate a high performing team, with the ability to manage complexity and make decisions with limited information.

What we offer:

• Hybrid Working,
• Competitive salary + potential bonus,
• Car allowance,
• 25 days holiday + public holidays (pro rata)
• Holiday purchase scheme,
• Contributory pension,
• Paid volunteer day to support a cause you are passionate about,
• Enhanced maternity, paternity, adoption and shared parental pay entitlements,
• Private health insurance,
• Dedicated 24/7 employee benefits platform ‘Verlingue’ that include things like: free eye tests, retail discounts,
• EAP WeCare service - including a 24/7 online GP and mental health counselling service,
• Boost your learning and growth through access to a Talent Library with over 800 courses, covering subjects from business skills to project management essentials,
• A warm and welcoming team environment,
• Development and a chance to build a rewarding career.

Some of your key tasks will be…

• Main point of contact for security matters for the region,
• Build a highly engaged and trained team with the required capabilities and competencies to achieve the stated mission.
• Gain a strong understanding of the business and its operations, and underlying IT,
• Analyse the effectiveness of the security controls (technical, processes, people) in the countries and businesses in scope,
• Propose plans towards improvement, in line with the global cybersecurity strategy,
• Support group-wide initiatives to roll-out new controls or improve existing ones,
• Enforce the global cyber risk framework to the countries and businesses in scope, aligning and influencing the business and technology areas to prioritise and mitigate key cyber risks,
• Maintain the risk registry, in alignment with the required stakeholders,
• Ensure that security is embedded in every regional project delivery process by providing the appropriate information security policies, practices, guidelines and necessary oversight,
• Proactively work with business units and global functions in InfoSec to support internal and external audits and ensure their success,
• Support other InfoSec teams and local IT teams during incident management and incident response activities,
• Liaise with Data Protection Officers for the implementation of data protection processes and controls, and during any data privacy issue,
• Contribute to obtaining the KPIs and metric values so InfoSec can report on our security posture periodically and consistently,
• Report in senior-level forums our risk posture and KPIs and metrics,
• Contribute to create a culture of security by communicating and raising awareness about security risks,
• Keep a constant innovative, challenging and constructive attitude towards continuous improvement.

Key skills and experience:

• Substantial experience in IT and Technology, with considerable experience in a leadership role in cybersecurity within complex multinational organisations,
• Previous experience managing cyber incidents in a complex multinational organisation,
• Proven ability to coach, lead, and motivate a high performing team,
• Deep understanding of the cybersecurity market, trends, risk frameworks and security standards and regulations,
• Excellent written and verbal communication skills, able to communicate and influence stakeholders effectively within a multicultural ecosystem,
• Ability to manage complexity and make decisions with limited information or under uncertainty,
• Bachelor’s degree in computer science, Computer Engineering, Mathematics or similar or have equivalent experience,
• You must be able to communicate effectively in English (ie CEFR C1).

Desirable skills and experience:

• Spanish or Swedish language skills

If you are not sure if you have the relevant skills or experience, then please apply (only takes a few minutes) and let our team review and come back to you.

A bit about us:

Tunstall is amarket-leading healthandcare technology provider.

We’re passionate about ensuring our team reflects the brilliant and unique qualities of the people and communities we support. Ourincredible team of more than 3,000 colleaguesprovideslife savingandlife changing technology and services to millions of people in 18 different countries.

At Tunstall you’ll find a place where you’re valued and celebrated for being yourself. We empower our people to deliver the very best teamwork, innovation and thought leadership by creating an environment where we champion diversity and inclusion. We demonstrate our commitment to diversity and inclusion at each step. From our open, fair, and transparent recruitment processes, through to the many development and career growth opportunities we provide.

Each Tunstall colleague has a superpower… they’re unique. No one else is them, and we think that’s special. Come and join our mission and be part of our team, our One Tunstall team.