Scope:Critical oversight of Bell’s information security, cyber security and data protection activities including the maintenance and governance of relevant polices, processes, procedures, and standards, training and awareness

Based at: Remote with travel to Portsmouth and London as required (at least once per month)

Purpose: We seek a visionary and hands on execution-focused IT Security Manager to lead Bell’s global cyber security strategy. This role is responsible for safeguarding the Bell’s systems, platforms, networks and data across all geographies, ensuring regulatory and operational compliance. Building a modern, resilient security architecture that enables continued innovation. An expert in their field will influence the direction of the internal IT landscape ensuring our customers and employees are protected alongside the day to day running of security activities.

1. Defining and driving the enterprise-wide information and cyber security strategy across the company
2. Overseeing all aspects of security operations, governance, architecture, engineering and incident response to protect systems, networks, and our data
3. Embedding “secure-by-design” principles into software development, infrastructure provisioning, and vendor management
4. Developing and implementing applicable IT policies, processes, procedures, and standards.
5. Developing a security culture within IT and the wider business and ensuring security activities are embedded into business activity
6. Managing IT security risk and making pragmatic risk-based decisions
7. Managing IT security incidents and evaluation of compliance and ongoing performance against KPIs: including investigation, response, and reporting
8. Responding to RFPs and providing advice to our business and customers on IT Security and Data Management related matters
9. Keeping abreast of external customer information and cyber security requirements and embedding them into our policies and processes
10. Undertaking security compliance monitoring and security policy assessments / audits

• Extensive experience in IT security leadership, preferably within high-growth, global businesses.
• Proven expertise in implementing information security and risk frameworks. (i.e. ISO27001, Cyber Essentials, SOC2, COBIT, NIST CSF, CIS)
• Proven ability to operate at both strategic and operational levels, influencing across technical and executive audiences.
• Deep knowledge of global cybersecurity regulations, cloud security architecture, identity management, and data protection.
• Demonstrated experience in authoring and maintaining policies and procedures related to information security.
• Experience managing corrective action plans and overseeing security risk management initiatives.
• Broad technical knowledge including SaaS, Cloud technologies, Software Development Life Cycle (SDLC), Vulnerability Management, Networking, and Identity and Access Management. (IDAM)
• Ability to be Security Vetted.
• Knowledge of ITSM and SIEM tools.
• Deep understanding of the Microsoft Stack and licensing.
• Exceptional leadership, communication and interpersonal skills.
• Strong analytical and problem-solving abilities.
• Ability to work collaboratively across departments and drive initiatives in a fast-paced environment.
• High level of integrity and professionalism in managing sensitive information.
• Professional certifications such as CISSP, CISM, CISA, or CRISC are strongly preferred.