Cyber Security Manager

TL;DR

Cyber Security Manager: Supporting subsidiary businesses by building relationships, overseeing cybersecurity planning and execution, and ensuring alignment with the Group cyber security framework. Focus on driving security initiatives, coordinating security operations, and supporting businesses with regional security requirements.

Location: Must be based in Welwyn Garden City, UK, with travel to subsidiary head offices as required.

Company

Tesco's vision is to become every customer's favourite way to shop, serving customers, communities, and the planet a little better every day.

What you will do

• Maintain strong stakeholder relationships and promote security best practice.
• Understand business security posture and engage them in security improvement recommendations and cyber risk management.
• Present risk-based security position and recommendations to management and executive teams.
• Drive information security improvement plans, incorporating Tesco Group security requirements for GDPR, PCI, NIS2, and ISO27001.
• Design and organize information security assessments, penetration testing, reviews, and audits.
• Monitor and respond to emerging threat patterns, vulnerabilities, and anomalies.

Requirements

• Broad and deep Cyber/Information Security expertise.
• Strong knowledge of security management principles and practices.
• Excellent stakeholder engagement and ability to drive change.
• Proven track record of engaging with diverse stakeholders and building a security culture.
• Ability to analyze complex information and make sound decisions.
• Security qualifications such as CISM, CISSP, CISA or equivalent are desirable.

Culture & Benefits

• Annual bonus scheme of up to 20% of base salary.
• Holiday starting at 25 days plus a personal day (plus Bank holidays).
• Private medical insurance.
• 26 weeks maternity and adoption leave at full pay (after 1 years’ service).
• Free 24/7 virtual GP service and Employee Assistance Programme (EAP).