The purpose of this role is to serve as a Cyber Lead to ensure the organisational controls are effective in deterring and minimising the impact of a cyber‑attack on our operations. The role will be a key stakeholder in the definition and development of our cyber security controls while being responsible to ensure they are both effective and compliant with regulations.
The role will act as a technical SME to the business and other IT members, a role model to drive maturity and compliance with the NIS2 legislation, while providing governance and assurance that the groups Cyber Security Controls evolve as necessary to create a resilient and effective means to protect the organisation.
What you’ll be doing
Implementation and operational effectiveness of Musgrave cyber controls
SME to business, providing specialised knowledge on cyber threats, IT risk and controls
Provide technical oversight and forensic insight throughout the Musgrave landscape, highlighting security risks and improvements and managing those risks through to closure
Enhance the information security policies, standards and guidelines to evolve as the threat changes
Manage and maintain security tools and technologies, ensuring they are properly configured, updated, and integrated into the company’s infrastructure
Work with business, internal IT and 3rd party vendor teams to promote and adopt security best practices
Respond or escalated reported security incidents, being a secondary contract for all incidents
Identify opportunities for improving the security posture within Musgrave
Responsible for NIS2 cyber security operational controls, ensure they remain properly governed and effective
Conduct regular risk assessments and vulnerability scans to identify potential security threats and weaknesses in the company’s infrastructure. Ensuring proper escalation and management oversight to close any gaps
Be a key stakeholder in defining security solutions that have been identified during gap analysis and reviews
Provide information security support to current and future IT projects
Act as a security partner as a trusted advisor to IT functions, providing insights into industry trends, best practices, and compliance requirements
Support Cyber team members and provide guidance, training, and mentoring
Develop strong partnerships within the business teams and other technical teams, identifying new security opportunities and challenges, ensuring that the right actions are taken to avoid risks
Be an escalation point for all security incidents
Review the existing security position and stay updated on the cybersecurity industry globally to propose positive changes
The lead will ensure they adopt and align to Musgrave cultural values, striving to ensure they are vested in positive outcomes to ensure continued growth and stability in the organisational values and interests
What we’re looking for
Qualifications
2:1 Honours Degree (Level 8) – Computer Science with Cyber Security or 2:2 Honours Degree with a Level 9 2:1 qualification, or CISSP
Skills
At least 5 to 7 years’ experience as a Security lead
Expertise in multiple of the following domains: Security Infrastructure, Cloud Architecture, Web Frameworks, Identity and Access Management
Excellent verbal and written English skills, interpersonal skills, and professionalism
Desirable
DNS configuration and Management
Kubernetes/ Container principles
API Security
VPN configuration
Vulnerability management
EDR SolutionsUnderstanding of PCI requirements
Ability to adequately profile risk
Career Development
With a commitment to your personal and professional growth, Musgrave offers numerous opportunities for advancement and learning.
Equal Opportunity
Musgrave is an equal opportunities employer. We encourage applications from diverse candidates. If we can make any accommodations to enable you to be the best version of yourself during the interview, please let us know.
Hybrid Working Model
Musgrave operates a Work Smart hybrid working model where you can alternate your time between connecting and collaborating in the business and working remotely.
#J-18808-Ljbffr