Job Title: Information Security Officer
Reports to: Chief Information Security Officer
Department: Information Security
Location: London
DEPARTMENT DESCRIPTION
The Technology department is led by the Technology Director who reports to the Chief Operating Officer; The Technology Department is charged with:
- Development, communication and execution of the company’s Technology Strategy, Governance processes, Architectural guidelines, and Risk management
- Change delivery for Platforms, Systems and Processes, supporting our business verticals
- Provision of secure, efficient and high-quality IT and Broadcast services
Driven by the Channel’s Future4 strategy, our business is undergoing an accelerated digital transformation. To deliver this future, Channel 4 are refreshing the operating model of the technology team. The operating model is aligned with the four key areas of Channel 4’s business, Content; Marketing and Viewer Experience (incl. All 4); Commercial; and Operations (incl. ERP), each having a technology leader embedded alongside the business leader.
These business orientated units will be supported by a strong central function that provides leadership and services through Strategy, Architecture & Data, Service Management, and Governance Risk & Compliance.
JOB PURPOSE
The purpose of the role is to assist the CISO in the running of the cyber security department, which looks after the confidentiality, Integrity and Availability of Channel 4’s assets. The individual will oversee security projects, manage the Cyber Security risk register and ISO27001 compliance activities, as well as help produce the cyber security strategy designed to support Channel 4’s commitment to it’s corporate Digital strategy. Part of the role is to liaise closely with the operational teams and assist to ensure security related requirements are met on an ongoing basis. The role will also include responsibility to assist as a mentor to other members of the team and contribute towards the company’s apprentice scheme
KEY RESPONSIBILITIES
- Work with the team to help improve the cyber security culture throughout the business
- Help maintain a secure environment via the cyber security tools and services in place for Channel 4
- Assist the CISO in ensuring that policies remain current and a strong level of governance up to the C4 board is in place
- Be aware and involved with any projects/initiatives internally or externally to ensure cyber security is incorporated from conception
- Work alongside the CISO and the Data Protection team to maintain GDPR compliance through advice on projects and Privacy Impact Assessments
- Support the CISO in responding to external and internal audits in conjunction with the Service Management Team
- Deliver and maintain the ISO27001 accreditation
- Manage the Cyber Security Risk Register
- Review (along with other team members) any new projects or requests to ensure a strong cyber security footing.
- Provide advice to all areas of the business with regards to Cyber Security in their day to day work, projects, and programmes
- Mentor (when applicable) Cyber Security Apprentice(s)
- Liaise closely with the operational teams and assist to ensure security related requirements are met on an ongoing basis
- Help provide content to the Cyber Security Training and Awareness specialist for regular communications to the business.
ESSENTIAL EXPERIENCE & SKILLS
- Experience with ISO27001 governance
- Expertise in information security knowledge and delivery
- Proven experience of successfully delivering in a similar level role
- Experience of the full software development delivery lifecycle for technology projects from requirements and design through technical delivery to implementation
- Experience of working in a small team with tight deadlines
- Experience of working on projects and liaising / providing technical input to projects in a timely fashion
- Strong communications skills, with the ability to present ideas verbally and in writing
- Proven collaboration skills, with the ability to win trust and gain input from stakeholders, 3rd parties and colleagues
- Extensive stakeholder management experience, with the acumen to be aware and act on any issues that need to be reported
- Good facilitation skills
- Able to judge when things need to be escalated
- Proven ability to multi-task across several concurrent projects and activities
- Demonstrates a willingness to share, be open and provide input to others’ needs
- Demonstrates a passion for improving process and driving forward efficiency improvements
- Proven analytical thinking skills with strong problem-solving ability and a focus on getting things done
- Creative with the ability to think outside the box and challenge the status quo
- Aligned to and passionate about the C4 values and remit
DESIRABLE EXPERIENCE & SKILLS
- Drive and passion (for success and quality)
- Presents a professional image in words, manner, tone and style
- Logical thinker with the ability to triage problems independently.
- Has a ‘right first time attitude’
- Resilience – to cope with demands and timescales
- Relationship skills
- True leadership skills, including a ‘one team’ ethos and the ability to motivate others
- A customer service orientation
- Focused and timely communication skills; clear and persuasive under pressure
- Enjoys working in a changing and challenging environment, with an evident “can-do” attitude.
- Able to effectively deal with changing priorities or obstacles and to provide alternative options or solutions
