Job description
We are Avanti West Coast and we are busy making rail the greener, cleaner, and comfier way to go. A joint venture between First Group and Trenitalia, we are going all out to transform train travel on the West Coast Main Line and we are looking forward to whooshing more people to their destinations in industry-leading comfort.
Every one of our colleagues are encouraged to make a difference today to look after tomorrow. We are passionate about people sharing their spark and get a buzz seeing our teams take pride. With employees based right across the country, we love to win together and drive a culture which stands for progress ¿ ready to raise the bar at every opportunity.
We have an exciting opportunity to join our IT Team as the Head of Information Technology Governance & Information Security!
The Team is responsible for cyber security and raising the bar for cyber resilience across the business to ensure the confidentiality, availability and integrity of critical business systems and data supporting operations through compliance with industry recognised standards. In this role, you will lead the information security team on all aspects of data and cyber security. You will be responsible for the cyber security risk for the West Coast Partnership and own the overall planning and execution of Technology Business continuity.
Key Accountabilities for this role include:
- Establish and develop appropriate policies, procedures, and practices in relation to IT governance.
- Delivery and deployment of Committed Obligations relevant to GDPR and Cyber Security.
- Develop, deploy controls and monitor policies and procedures relating to Business Continuity, Disaster Recovery, GDPR, Security and Risk Management
- Accountable for completion of vulnerability assessments and that remediation steps are taken to mitigate against any reported risks.
- Promote necessary awareness of the relevant data and security IT policies and procedures by ensuring visibility and promotion via our Internal Comms channels.
- Provide expert advice and support to IT Management to deliver services as required and manage the cyber security plans and budget.
- Responsible for cyber security planning, policy, and operations in order to meet business objectives.
- Responsible for compliance with GDPR, NIS Regulations and PCIDSS.
You will be able to demonstrate:
- Relevant cyber security qualification
- Certification in GDPR or Data Protection
- Strong knowledge of information security standards such as PCI-DSS, NIS Directive and ISO 27001 is required as is strong understanding of GDPR and privacy requirements.
- Demonstratable experience in leading teams.
- Experience of change management, and the ability to introduce positive change.
- Effective relationship management with ability to influence and coach key stakeholders.
Benefits include:
- Final salary pension
- Free travel on Avanti West Coast for you/spouse/partner/dependents
- Privilege Travel card (75% off other train operators fares for leisure travel)
- 30 days holiday rising by 1 for every completed year of service to a maximum of 37 days (inclusive of bank holidays)
- 10 free journeys on other First Group Train Operators
At Avanti West Coast, we value the differences that make each of us outstanding! Avanti West Coast recognises the benefits of building a diverse workforce and employing people from diverse backgrounds, which includes their race, religion, age, gender, gender identity, disability and sexual orientation.
Everyone who joins Avanti West Coast becomes part of our close-knit team. We're committed to ensuring that Avanti West Coast is inclusive, a place where people are encouraged to be themselves, and not an edited version to fit in. A place where differences are encouraged, recognised, accepted and put to good use!
Avanti West Coast
www.avantiwestcoast.co.uk
London, United Kingdom
Unknown / Non-Applicable
1001 to 5000 Employees
Company - Private