Regional Information Security Officer

Tunstall Healthcare Group
Manchester
1 week ago
Create job alert

We are currently recruiting for aRegional Information Security Officer, reporting to the Global Chief Information Security Officer (CISO), to oversee the information security function across the countries and Tunstall entities in their scope.

This is an incredibly exciting time to join Tunstall as we embark on an exciting period of transformation. You will be joining a recently created and growing global Information Security team within Tunstall and will be in a leadership position playing a key part in the success of this transformation.

This role would be based at either our Manchester office or our Whitley site (DN14 0HR) working on a hybrid basis. We are flexible on number of days in the office.

What will you be doing in this role?

As ourRegional Security Officer, you will be responsible for implementing, running and overseeing the information security function across the countries and Tunstall entities in your scope, ensuring consistent and strong information security management in support of our business goals and in line with the global Information Security strategy and direction. You will be the main point of contact for security matters in your region and analyse the effectiveness of the security controls of the countries and Tunstall entities in scope, proposing plans for improvement in line with the global strategy.

Enforcing the global cyber risk framework, aligning and influencing business and technology areas to prioritise and mitigate key cyber risks and maintaining the risk registry, in alignment with key stakeholders, is vital to the success of this role.

The Ideal candidate:

To be successful in this role you will have substantial experience in IT and Technology, with considerable experience in a leadership role in cybersecurity, within complex multinational organisations. You will have a deep understanding of the cybersecurity market, trends, risk frameworks and security standards and regulations.

The successful candidate will be proactive, with excellent verbal and written communication skills, able to coach and motivate a high performing team, with the ability to manage complexity and make decisions with limited information.

What we offer:

  • Hybrid Working
  • Competitive salary + potential bonus
  • Car allowance
  • 25 days holiday + public holidays (pro rata)
  • Holiday purchase scheme
  • Contributory pension
  • Paid volunteer day to support a cause you are passionate about
  • Enhanced maternity, paternity, adoption and shared parental pay entitlements
  • Private health insurance
  • Dedicated 24/7 employee benefits platform ‘Verlingue’ that include things like: free eye tests, retail discounts
  • EAP WeCare service - including a 24/7 online GP and mental health counselling service
  • Boost your learning and growth through access to a Talent Library with over 800 courses, covering subjects from business skills to project management essentials
  • A warm and welcoming team environment
  • Development and a chance to build a rewarding career

Some of your key tasks will be…

  • Main point of contact for security matters for the region
  • Build a highly engaged and trained team with the required capabilities and competencies to achieve the stated mission
  • Gain a strong understanding of the business and its operations, and underlying IT
  • Analyse the effectiveness of the security controls (technical, processes, people) in the countries and businesses in scope
  • Propose plans towards improvement, in line with the global cybersecurity strategy
  • Support group-wide initiatives to roll-out new controls or improve existing ones
  • Enforce the global cyber risk framework to the countries and businesses in scope, aligning and influencing the business and technology areas to prioritise and mitigate key cyber risks
  • Maintain the risk registry, in alignment with the required stakeholders
  • Ensure that security is embedded in every regional project delivery process by providing the appropriate information security policies, practices, guidelines and necessary oversight
  • Proactively work with business units and global functions in InfoSec to support internal and external audits and ensure their success
  • Support other InfoSec teams and local IT teams during incident management and incident response activities
  • Liaise with Data Protection Officers for the implementation of data protection processes and controls, and during any data privacy issue
  • Contribute to obtaining the KPIs and metric values so InfoSec can report on our security posture periodically and consistently
  • Report in senior-level forums our risk posture and KPIs and metrics
  • Contribute to create a culture of security by communicating and raising awareness about security risks
  • Keep a constant innovative, challenging and constructive attitude towards continuous improvement

Key skills and experience:

  • Substantial experience in IT and Technology, with considerable experience in a leadership role in cybersecurity within complex multinational organisations
  • Previous experience managing cyber incidents in a complex multinational organisation
  • Proven ability to coach, lead, and motivate a high performing team
  • Deep understanding of the cybersecurity market, trends, risk frameworks and security standards and regulations
  • Excellent written and verbal communication skills, able to communicate and influence stakeholders effectively within a multicultural ecosystem
  • Ability to manage complexity and make decisions with limited information or under uncertainty
  • Bachelor’s degree in computer science, Computer Engineering, Mathematics or similar or have equivalent experience
  • You must be able to communicate effectively in English (ie CEFR C1)

Desirable skills and experience:

  • Spanish or Swedish language skills

If you are not sure if you have the relevant skills or experience, then please apply (only takes a few minutes) and let our team review and come back to you.

#J-18808-Ljbffr

Related Jobs

View all jobs

Regional Information Security Officer

Regional Information Security Officer

Chief Information Officer

Chief Executive Officer

Incident Response Manager

Cyber Security Engineer

Get the latest insights and jobs direct. Sign up for our newsletter.

By subscribing you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

10 Must-Read Cyber Security Books for UK Professionals: Boost Your Career and Stay Ahead of Threats

With rapid advancements in digital infrastructure, cloud computing, and the Internet of Things (IoT), cyber threats continue to evolve at lightning speed. For organisations across the UK—and globally—robust cyber security is no longer optional: It’s a strategic imperative. From healthcare and finance to government agencies and tech start-ups, every sector needs skilled professionals to safeguard critical data and protect users. If you’re looking to break into or advance within the cyber security industry, staying updated on the latest techniques, threat landscapes, and defence strategies is paramount. One of the best ways to build and sharpen your expertise is by reading authoritative, high-quality books that combine foundational knowledge with cutting-edge insights. In this guide, we’ve compiled a list of ten books that cater to various skill levels, spanning ethical hacking and threat intelligence to secure software development and cryptography. By diving into these resources, you’ll fortify your understanding of cyber security fundamentals, explore hands-on techniques for defending systems, and gain the strategic perspective needed to excel in roles throughout the UK’s thriving cyber security landscape.

Navigating Cybersecurity Career Fairs Like a Pro: Preparing Your Pitch, Questions to Ask, and Follow-Up Strategies to Stand Out

In a world where digital threats are escalating and online infrastructure underpins nearly every aspect of our personal and professional lives, cybersecurity has swiftly become one of the most sought-after career fields. Demand for skilled cybersecurity professionals outstrips supply, both in the UK and globally. From ethical hackers and penetration testers to governance, risk, and compliance (GRC) specialists, the opportunities are extensive—and lucrative. Amidst this surge in demand, cybersecurity career fairs provide an invaluable chance to meet potential employers face-to-face, gain industry insights, and make connections that can accelerate your career trajectory. Unlike applying to countless jobs online, these events bring companies, security leaders, and aspiring candidates together under one roof. When approached with the right strategy, a single conversation at a cybersecurity fair can open the door to your dream job. In this comprehensive guide, we’ll explore how to prepare thoroughly, engage confidently, and follow up effectively after a cybersecurity career fair. By incorporating these insights into your approach, you’ll stand out from the crowd and maximise your chances of securing the perfect role in this fast-growing field.

Common Pitfalls Cyber Security Job Seekers Face and How to Avoid Them

The cyber security industry in the UK and worldwide is experiencing rapid growth. With cyber attacks growing in sophistication and frequency, organisations are investing more resources than ever into defending their digital assets. From penetration testers and threat analysts to security architects and compliance officers, cyber security professionals are in high demand across a variety of sectors—including finance, healthcare, government, and retail. Yet, in spite of this high demand, the process of landing a cyber security role can be more challenging than many candidates anticipate. The stakes are high: prospective employers entrust cyber professionals with their most sensitive data, their compliance posture, and often their core business operations. Therefore, they’re looking for candidates who can demonstrate not just technical know-how, but also excellent communication, adaptability, and an awareness of the broader business context. In this article, we’ll explore the most common pitfalls that cyber security job seekers face, especially in the UK market, and how to avoid them. Whether you’re a recent graduate, a professional transitioning from a different field, or an experienced practitioner aiming for a senior role, these insights will help you stand out and secure the opportunities that fit your skill set and career goals.