Director of Cyber Security

• Lead implementation of Group cyber security strategy, driving a long-term approach to building resilience and capability.
• Supervise 2nd line Cyber Risk, Standards and Assurance teams, implementing technology security policies and NIST CSF standards.
• Strengthen cyber governance and risk management, providing timely and accurate risk reporting to senior management and risk committees.
• Lead Security Monitoring & Incident Response teams, ensuring robust processes across critical business systems.
• Oversee Platforms & Services Security teams, ensuring assets comply with NIST CSF v2 and Group policies.
• Manage SEC reporting requirements for significant cyber incidents and educate stakeholders on GDPR and regulatory responsibilities.
• Collaborate with Legal, Risk, DPO and Finance teams to add value and improve cyber risk management.
• Support merger and acquisition activities by assessing cyber risk in proposed acquisitions.
• Create and maintain cyber risk management frameworks and oversee risk register updates.

• Proven experience building and leading cyber security advisory services for large multinational organisations.
• Strategic thinking with ability to translate long-range vision into practical cyber security risk reduction.
• Experience leading, developing and managing large diverse teams across multiple geographies.
• Strong technical security knowledge in cyber security, disaster recovery and risk management.
• Risk management expertise developed in dedicated risk, compliance or audit roles.
• Experience coordinating multi-source management information, dashboards and risk reporting.
• Strong communication skills with ability to explain technical issues to non-technical audiences.
• Experience supporting M&A activities and presenting cyber security approaches to potential partners.

Burns Sheehan