Company Description
About Octopus
Octopus is a group of innovative, entrepreneurial businesses investing in the people, ideas and industries that will help to change the world. We are experts in financial services and energy, and we’re also a certified B Corp, meaning we care as much about the impact of our investments as the returns they generate. Today we manage more than £12.4* billion on behalf of retail and institutional investors. Our energy supply business is one of the fastest growing companies in the UK, reaching 3.1 million customers in just five years, and is the only supplier to be recommended by Which? four years in a row.
Octopus Energy, Octopus Giving, Octopus Moneycoach, Octopus Investments, Octopus Renewables, Octopus Real Estate, Octopus Ventures, Octopus Wealth and Seccl Technology are all part of Octopus Group. Visit octopusgroup.com.
- Funds Under Management data includes undrawn commitments, funds under advisory mandates, funds monitored and the Octopus Cash service as of 31st December 2021
Octopus Labs
Octopus Labs is the tech division of Octopus group. This role sits within the engineering team which comprises of 60 onshore and offshore engineers, testers, architects, development managers and technical leads.
Labs use the latest technology to build state of the art systems to support our business processes. Our team are constantly looking for new technologies, and people at all levels of the function are encourage and expected to contribute with ideas on how we can improve our products. We embrace diversity and have people from a wide range of backgrounds working both in the UK and from countries around the world.
Job Description
Role Purpose
As the Business Security Officer, you will report to the CIO and work to further define and embed the business security strategy throughout the business.
The foundations are in place; we are well on the way to becoming NIST certified. Now we’re ready for an experienced Business Security Officer to take Octopus to the next level!
What You’ll Do
- Own Octopus’ Cyber Security governance frameworks
- Define the Information and Cyber Security strategy and take a strong start to the next level
- Consistently improve our Cyber Security governance frameworks
- Engage and collaborate with leadership to ensure alignment Compliance and Cyber Security initiatives
- Encourage the business to adopt the best cyber security practices
- Be responsible for setting the Security Strategy
- Own and drive awareness of Cyber Security, and recommend training for areas of the business
- Running audits and controls testing to help assure Cyber Security
- Play an active role on the Information Security Committee
- Threat intel and Threat modelling
- Partner with business stakeholders to identify and manage their technology risks
Qualifications
Who You Are
- You have relevant senior experience and a good understanding of applying security principles within technology companies
- Whilst you can hold the strategic direction and vision for Security but can get down in the detail too
- You have relevant certifications in security, CISSP, CISM
- You’re very familiar with NIST and OWASP
- You thrive on complexity and solving problems
- You enjoy driving change and innovation and can bring people along the journey with you
- You love technology and figuring out how things work
- HOW is just as important as WHAT you do
- You are a confident communicator, enjoy working in a friendly, collaborative, fast-paced team and are comfortable talking to people at all levels of the business
Additional Information
Our benefits
We’re passionate about our people and want to do as much as we can to help ensure you’re able to be your best authentic self at work and outside of work. We’ve put together an amazing benefits package that we’re constantly reviewing and enhancing. Here’s just a brief overview, and there’s heaps more too:
A really valuable share ownership scheme, competitive salary and discretionary bonus, pension, life assurance, healthcare flexible working, Anchor our wellness hub which includes Headspace, one to one coaching through Sanctus, Parent Cloud, Cognity, Shout and much more, a take what you need holiday policy, enhanced family leave policies, Octopus Springboard and Octopus Giving. We’ve also recently introduced a policy which allows our people to work overseas for up to a month per year, usually in the summer months. We would be happy to answer any questions you may have on any of these benefits.
We recognise that over the last 18 months the way people work has changed, but we’re a business whose fantastic culture has been built on face-to-face interactions with our customers and of course each other. At our heart we’re a sociable business and are keen to maintain this moving forward but appreciate the benefits working from home can bring to our lives and work productivity. Our goal is to encourage our teams back into the office environment 3 days a week however, allowing the freedom to make this work best for them and our business.
Our Values
At Octopus we don’t just focus on what we do but also how we do it. Everyone shares our values of being straightforward, helpful and bold.
What we offer
Octopus is committed to creating a diverse and inclusive employee experience for all. We are committed to promoting equal opportunities for growth and development regardless of race, gender, religion, sexual orientation, age, disability, or socio-economic background.
We believe strongly that teams are at their best wherever a member of the team feels safe to bring their whole self to work.