Head of Infrastructure & Cybersecurity

Head of Infrastructure & Cybersecurity

Salary £60k-£70k + Excellent Benefits and Incentives

Free daily parking

Flexible work arrangements (school run etc)

Hours: Full time 37.5 hrs per week Monday - Friday

Norwich City Centre Please note this role is full onsite, with no scope for hybrid or remote working.

Job Summary: We are seeking a highly skilled and experienced Head of Infrastructure & Cybersecurity to join our clients team.

As the Head of Infrastructure & Cybersecurity, you will be responsible for overseeing and managing the organization's infrastructure and cybersecurity operations.

This is a critical role that requires strong technical expertise, leadership abilities, and a deep understanding of cybersecurity best practices.

Duties & Responsibilities Provide leadership the Cyber Security and Infrastructure teams in the course of delivering IT services in support of the firm's business strategy Develop security and infrastructure strategies commensurate with business needs Maintain the cyber security framework, providing ongoing analysis of emerging threats, risks and control gaps.

Ensure 24/7 availability of services. Define and steer the Cyber Security programme to implement technical security solutions and controls aligned to industry best practice and the emerging threat landscape. Advise on information security at appropriate risk oversight committees and boards Collaborate with the wider IT department, in the development, implementation and ongoing assessment of security policies. Provide information security and infrastructure requirements to IT projects and ensure their appropriate implementation. Review, update, and enforce infrastructure security policies, standards, and procedures Ensure alignment with industry standards, regulations, and best practices. Act as 1st line of defence for information security, partnering with and providing challenge, support and advice to the business and IT teams to identify and manage the mitigation of security risks Collaborate with IT and business peers to manage security vulnerabilities, events or investigations. Act as control and process owner for security incident management and response. Work closely with key stakeholders to ensure incident response plans are up to date and are effectively tested, including facilitation of tabletop exercises to simulate incident response. Manage relationships and oversee the day-to-day activities of security and infrastructure outsourced suppliers Participate in internal security assessments, internal audits, client audits, compliance certifications, third-party risk management and client security questionnaire responses

Key Skills & Experience Required

At least 5 years relevant experience

Proven experience of working with IT security systems and information security governance Experience of security engineering, in support of technologies and controls such as Network and Application firewalls, Microsoft Active Directory services, Encryption technologies, Virtualisation of both Server and Desktop environments using VMWare, Microsoft Exchange configured as a hybrid with M365 Vulnerability management

Perimeter network security - WAF, firewalls, DNS security, email security