Business Information Security Officer Liberty Global in Schiphol-Rijk
We’re looking for a Business Information Security Officer to join us in our Schiphol-Rijk (NL), Reading (UK) or Hammersmith (UK) office.
We currently operate a hybrid working model that involves working 3 days a week in the office and 2 days a week from home.
Business Information Security Officers (BISOs) are at the heart of Liberty Global’s information security and transformation programme, ensuring that we continue to deliver on our purpose of “delivering tomorrow’s connections today”.
As a diverse and inclusive organisation, our BISOs embed with business segments, and help drive business-focused security by supporting business leaders, technology functions, as well as risk and compliance, and other functions. BISOs, acting as single points of contact for their business segments, are expected to understand the strategy of their respective business units, be responsible for the interactions with group shared security services, and are accountable for the security outcomes of their business units.
Finally, BISOs are the leading force for information security and cyber risk management being executed at the point closest to the actual risk with insights and understanding of the unique business context. As such, the role requires a servant leader with growth mind-set, emotional intelligence, self-motivation, agility, DevOps, and great communication, to complement our one-team culture as well as a good understanding of our regulatory requirements including but not limited to privacy.
What will you be doing?
Identify information security and cyber risk requirements and oversight of delivery by:
Defining business unit requirements for security controls that enable the business unit to conduct its business continuously in a secure manner
Defining business unit requirements for the information security strategy, roadmap and programmes that enable the business unit to regularly enhance its security controls
Ensuring delivery of the information security programme within the business unit, delivery of services and products provided by Group shared security services. Where services are delivered by external providers, ensuring delivery of the information security services as per requirements of business unit.
Engage with the business unit to:
Develop an understanding of business goals in order to constructively engage business leaders on information security, identifying key areas for improvement, driving appropriate risk management decisions and collaborating with partners to achieve positive outcomes and business benefits
Ensure emerging information and cyber security threats to the business are identified, discussed and addressed through presented opportunities of security innovation
Build strong relationships within the business to gain an understanding of security-related business risks.
Embedding information security and cyber across the business segment by:
Working with business leaders to ensure that information security policies and standards are integrated with business processes. Constructively challenging existing processes where necessary
Identifying and addressing opportunities for people, process, and technology to enable positive business outcomes factoring cyber requirements, and ensuring partners understand their responsibilities in relation to security risk mitigation and remediation
Monitoring information security trends and keeps business leadership informed about information security-related issues and activities potentially affecting the organisation.
Focus on awareness and training including by:
Briefing regularly the business unit leadership team on cyber threats and risks profile
Delivering awareness and training to the relevant business unit team and high-risk users
Communicating the importance and promoting awareness of information security to the business. Increasing business awareness of emerging security threats and risks. Helping develop a security culture within the business.
Partnering with the different functions working on controls by:
Leading information security compliance and risk assessment efforts
Providing guidance for audit preparation and addressing audit findings
Maintaining a balanced relationship with risk functions, compliance functions and with internal and external audit functions.
Leading and running an information security team.
Championing and supporting Group Security’s wider BCM and Crisis Management functions
We tend to look for people with:
Degree or equivalent combination of education and (work) experience
2 to 5 years of work experience in integrating security policies with people, processes, technologies and service
Skilled at identifying security risks and exposures as well as remedial controls and processes
In-depth knowledge and understanding of information security risk concepts and principles as a means of relating business needs to security controls
Information security management qualifications ( e.g., CISSP, CISM or CRISC) desirable
Good understanding for security solutions, security architecture, DevSecOps and security in hybrid multi-cloud environment
Understanding of BCM and Crisis Management operations
Demonstrable experience providing written and verbal presentations to senior leaders
Ownership mentality with analytical and problem solving skills
Absolutely credible with high standards of personal integrity
Excellent relationship management skills at all levels of the organisation
Proven ability to operate optimally with minimal direction
Building networks with key contacts in- and outside of Liberty Global
Passionate on doing the right thing and giving to an organisation focused on continuously improving customer experience.
We believe that great employee experience leads to excellent customer experience.
Competitive salary + Bonus
25 days annual leave with the option to purchase 5 more
Access to wellbeing and mental health benefits such as the Calm app, personal medical, critical illness cover and dental insurance
Matched pension contribution up to 10%
Access to our car benefit scheme
Access to our online learning platform to continue to develop and grow your career with us