Director Information Security

Recruiter
Flatirons Jouve
Location
London
Salary
Competitive
Posted
29 Aug 2024
Closes
13 Sep 2024
Employer Sector
Technology, IT & Telecoms
Contract Type
Permanent
Hours
Full Time

Are you ready for new challenges and new opportunities?

Join our team!

Current job opportunities are posted here as they become available.

At Flatirons Solutions, we have a very important job. With millions flying each day, we play an important role in making sure everything goes as planned. We take technical information and through software solutions we work our magic and produce an effective product that allows aviation and aerospace workers to be experts.

Who We Are

We are a global team of nearly 400 professionals with team members throughout US, Europe, and India who have a passion for Turning Content into Knowledge. Innovative software and service solutions are our bread and butter. We offer a competitive starting salary and benefits, as well as a high degree of autonomy and flexibility. You will be able to have a significant impact, make yourself heard and contribute to our overall success. We work hard to achieve great things, and we are constantly looking for ways to innovate.

What We Do

We use cutting edge XML and 3D technologies to make complex content come to life, allowing millions of airline passengers to travel safely each day thanks to efficient, compliant maintenance and operational procedures. Through a positive attitude and dedication, we work together to solve some of the industry's most challenging problems.

Who We Serve

We partner with manufacturers to produce the data needed to deliver complex products like aircraft, jet engines, components, and defense systems. We work with airlines to take control of that data to revise and deliver it to their flight crews and maintenance teams worldwide. Our solutions help power some of the largest airlines and most successful aviation and defense manufacturers in the world.

Who We Are Looking For

If you join our team as the Director Information Security, you can be sure of working with colleagues who enjoy solving industry challenges and contributing to the success of Flatirons.

The Director Information Security will be responsible for overseeing and enhancing Flatirons' information and cyber security strategies, policies, and practices. This role is critical in protecting the organization's intellectual property, customer data, and overall digital assets against cyber threats. The Director will work closely with other departments, including IT, Operational Excellence, Development/Engineering, DevOps, and legal to ensure comprehensive protection across all digital platforms and systems.

The ideal candidate will have deep expertise in cybersecurity within highly regulated environments, a strong understanding of US and UK defense industry standards, and the ability to navigate complex global security challenges. This position works directly with Flatirons customers and will be the single point of contact for all security related topics.

Key Responsibilities:

  1. Strategic:
    • Develop, implement, and lead the information security practice, providing direction on all cyber security initiatives.
    • Collaborate with senior leadership to integrate security measures into all business operations and product development.
  2. Identify, assess, and mitigate information security risks across the organization.
  3. Manage POAMs and Risk Registers accordingly working to reduce risk scores.
  4. Oversee security assessments, audits, and penetration testing to identify vulnerabilities.
  5. Ensure compliance with aerospace industry standards, such as NIST, ITAR, ISO, DOD CMMC, Cyber Essentials, MOD DefStan, FedRAMP, GDPR, DFARS.
  6. Develop and maintain an incident response plan for all security related incidents ensuring swift and effective handling of security breaches.
  7. Lead the investigation and resolution of security incidents, working closely with internal teams and external partners.
  8. Report on incidents and mitigation strategies to senior leadership and, where necessary, regulatory bodies.
  9. Security Architecture:
    • Design and implement security architecture for IT systems, networks, and applications, ensuring robust protection against cyber threats.
    • Oversee the implementation of advanced security technologies, such as encryption, firewalls, and intrusion detection systems.
    • Ensure the secure design of aerospace products and systems, considering both software and hardware security.
  10. Compliance and Governance:
    • Ensure compliance with global security regulations, including data privacy laws and aerospace–specific standards.
    • Develop and enforce information security policies and procedures across the organization.
    • Conduct regular security audits and assessments, reporting findings and recommendations to senior management.
  11. Collaboration and Communication:
    • Work closely with engineering, IT, legal, and other departments to ensure security is embedded in all projects and operations.
    • Act as a liaison with customers, government agencies, contractors, and other stakeholders on security matters.
    • Provide regular updates and reports to the executive team on the state of information security.
  12. Training and Awareness:
    • Develop and implement security awareness programs for all employees, promoting a culture of security throughout the organization.
    • Stay current on emerging security threats, technologies, and best practices, and ensure the team is updated on the latest trends.

Qualifications:

Education: Bachelor's degree in information security, Computer Science, or a related field. Master's degree Preferred.

Certifications: CISSP Required, CISM, CISA, AWS Security Specialty certifications are a plus.

Experience:

Minimum of 5 years in information security.

Defense or Government sector experience.

3 years' experience in risk management, incident response, and security architecture.

Excellent communication and project management skills.

Strong understanding of advanced security technologies and methodologies.

Strong analytical and problem–solving skills.

Knowledge of secure product development practices including DevSecOps.

Ability to work under pressure and handle multiple priorities in a fast–paced environment.