Back to Job Search

Head of Cyber Defence

Job Description

Job Description

As the Head of Cyber Defence you will lead an effective and efficient Cyber Defence function which incorporates; Security Operations, Security Engineering, Incident Response, Threat and Vulnerability Management and Security Testing. This role is pivotal in continually looking at ways to provide excellent services that underpin DLG's strategic direct whilst aligning with CISO strategy. Your team will be technically forward facing leaning into the provision of proactive, automated services with the ability to pivot to current and emerging threats and technologies, always ensuring there are appropriate protective and detective controls along with a first class response capability.

As a member of our leadership team within CISO we'll look to you and your team to provide subject matter expertise for security operations, equally you will have the opportunity to get involved in initiatives and activities across the whole CISO function.

N.B this is a hybrid role and you will be required to visit our London office c. twice per month and occasionally on other ad-hoc days as required.

What you'll be doing:

  • Responsible for all aspects of security operations including bringing new security technologies live into operation and reviewing and providing operational security assurance within the change management process

  • Creation and maintenance of key performance indicators that provide a view over the effectiveness of security operations on identifying, defending and responding to threats and managing situational awareness across the team.

  • Develop and deliver automated metrics and reports that provide a real time compliance 'dashboard' for use at all levels of the organisation and enables tangible and visible risk reduction.

  • Accountable for the design and implementation of an information security incident response framework to effectively identify, contain, respond and recover from security incidents and seeking to continually improve the information security incident response capability

  • Responsible for running the 24/7 information security incident management process through definition and management of response handling procedures and operational capabilities to effectively remediate and respond to technical security incidents.

  • Accountable for owning DLG's Threat Register and developing the cyber threat model and threat scenarios

  • Accountable for developing and delivering a cyber risk framework, based on actors, actions and assets, which incorporate intelligence feeds, business impact assessments, operational event feeds and risk and control assessments.

  • Responsible for identification of vulnerabilities through security testing activities and for the development of continuous security testing strategy e.g. SDLC, SAST, DAST.

  • Responsible for overseeing that Application Testing, Infrastructure Testing, Scenario Based Testing and Code Review is performed consistently throughout DLG.

  • Responsible for oversight of patching of known vulnerabilities in DLG's IT systems (e.g. applications, servers, networks, end user devices, etc.).

  • Responsible for the ongoing assessment of IT systems (e.g. applications, servers, networks, end user devices, etc.)to identify, manage and remediate vulnerabilities and reporting on the outputs of vulnerability assessments

  • Developing a high performing team through mentoring, coaching and guidance including effective talent and performance management

    Who you'll be working with

    At DLG (Direct Line Group) we are delivering a set of plans to transform our technology for the future, evolving the systems, platforms, and infrastructure that our people use day-to-day. You'll join the leadership team of our 'CISO' function and collectively your teams are responsible for keeping the business, customer and employee information assets, technologies and systems secure. This role will have c.4/5 direct reports who will be Leads for the areas this role looks after.

Candidate Description

  • Significant experience in security operations with experience of leading a security operations function

  • Knowledge of technologies such as anti-malware, DLP and forensics toolkits used in information security incident investigations

  • Security certification such as CISM, CISSP, CISA or similar

  • Knowledge of project management and risk techniques

  • Knowledge of system, application and infrastructure security threats and vulnerabilities

  • Strong stakeholder management skills and ability to interface with both technical and non technical stakeholders

  • Experience developing and managing high performing teams through growing people and establishing a shared sense of purpose

Employer Description

We are Direct Line Group - home to some of the country's best-known brands including Direct Line, Churchill, Privilege, Greenflag and NIG. Our vision is to create a world where insurance is personal, inclusive, and a force for good, and our purpose is to help people carry on with their lives, giving them peace of mind now and in the future.

DLG is at an important stage in its evolution to be a technology and data company. Following a few years of significant build and transformation of core assets, with the intent of better serving our customers at pace. However, there is more to do! With a growth mindset, the next wave of our maturity brings incremental, fast-paced delivery of our business & customer outcomes through empowered teams., Here at Direct Line Group, we recognise the importance of flexibility, not only in our personal lives but also in the way we work. Our mixed model way of working offers a 'best of both worlds' approach combining the best parts of home and office-working, offering flexibility for everyone.

How much you'll be in the office depends on your role, and we'll consider the flexible working options that work best for you. You can find out more about our flexible working approach or please get in touch with the team to discuss., Direct Line Group is an equal opportunity employer. We value diversity and we're committed to making DLG a truly inclusive place to work.

We recognise and embrace that people work in different ways and we'll always adapt as much as possible so you have the best and most comfortable working environment that we can offer. We know you're more than a CV, and the things that make you, you, can bring real potential to DLG.

If you need us to make any adjustments to our recruitment process, speak to our recruitment team who will be happy to support you.