Director Information Security Jobs

WHO ARE WE?

Dye & Durham Limited is a leading provider of cloud–based software and technology solutions designed to improve efficiency and increase productivity for legal and business professionals. Dye & Durham provides critical information services and workflows, which clients use to manage their process, information, and regulatory requirements. The Company has operations in Canada, the United Kingdom, Ireland, and Australia, and has a strong blue-chip customer base that includes law firms, financial service institutions, and government organizations.

Are you looking for an exciting new challenge? Want a career where you can make a real impact? At Dye & Durham, we are always on the lookout for talented and driven individuals to join our diverse team; helping us to deliver our innovative solutions across the globe and allowing our clients to access the critical information they need, when they need it. Make a difference with Dye & Durham.

WHAT WILL YOU DO?

The role aligns with D&D’s commitment to developing and maintaining best in class information security practices across all aspects of the business.

The Director Information Security role is accountable for the information security posture of Dye & Durham. This role will deploy appropriate technologies, processes and partnerships with a focus on delivering and continuously improving business outcomes relating to information security. Dye & Durham is a rapidly growing organization so priorities will change with acquisitions. The Director Information Security must competently adjust strategy and approach to stay aligned with business priorities and industry dynamics.

Based in either our Reading, UK or Toronto, Canada office, this is a management role that sees the incumbent leading a global team that embodies D&D’s values and driving a culture of learning, growth and development

Specific Responsibilities:

• Manage the information security posture of Dye & Durham through targeted investments and appropriate application of people, technology and processes.
• Facilitate the implementation of security controls to support contractual, regulatory and audit requirements in collaboration with client teams, legal, internal audit and IT governance, risk and compliance teams.
• Where appropriate, leverage external partners to accelerate execution of the security roadmap and implement more robust security capabilities.
• Define an information security roadmap in alignment with D&D business strategy, objectives and priorities.
• Drive continuous improvement across all information security domains, strengthening the organization’s ability to protect against security threats and to identify, detect, respond and recover from security events.
• Hire, develop, coach, appraise, reward and retain a highly qualified cybersecurity team.
• Work closely with IT and software development leaders to identify risks within the environment and take actions to remediate or mitigate that are aligned with the application and infrastructure roadmaps.
• Provide visible leadership for information security, challenging the status quo, driving transformation and continuous improvement, bringing increased visibility for information security within the business.
• Support IT and business leaders in achieving their objectives in a manner that protects Dye & Durham from cybersecurity threats.

Security Domains:

• Data security, information protection processes and protective technologies
• Ransomware protection and response
• Security operations, monitoring, event and anomaly detection
• Vulnerability identification and remediation, security scans and penetration testing
• Identity, access and authentication
• Embedding security into software development and infrastructure deployment processes
• Take accountability for the breadth of information security across Dye & Durham including:
• Security incident response and crisis management
• Awareness and training

Year One Critical Success:

• Information Security roadmap has been developed and approved, and all scheduled milestones have been achieved.
• Dye & Durham leadership has visibility into security issues and risks and can make fact-based decisions to accept, mitigate or remediate these risks. Critical and high priority issues and risks have been addressed.
• Continuous improvement programs are in place across all security domains with clear metrics demonstrating improvement in business outcomes.
• Information security team is staffed, engaged and managing the security landscape through a sustainable hybrid internal and vendor delivery model aligned with approved budgets.

WHAT DO YOU NEED TO BE CONSIDERED?

• High attention to detail and the ability to communicate complex concepts to non-experts
• Strong organisational skills, self-motivated and an ability to work to and meet deadlines
• Demonstrated analytical skills and the ability to develop and document risk mitigation strategies within a business context
• At least 5 years' experience in Information Security with a solid understanding of security operations
• Experience with core information security technologies and platforms including data loss protection, security incident and event management, vulnerability management, etc.
• Demonstrated knowledge of risk management frameworks and vulnerability management
• Exceptional stakeholder management skills and experience building consensus in a highly diverse environment
• At least 3 years' experience in leading teams in a fast-paced, dynamic business environment
• Ability to partner with executives and business leaders to develop security strategies and to implement the same

Qualifications

• Relevant security certifications and designations are an asset
• Tertiary qualifications in information systems or technology related discipline

Other

• Meets all current and future clearance requirements.
• Demonstrated commitment to the organisation Vision, Mission and Values.
• Abides by and always complies with all company procedures and policies.
• Promotes a positive working relationship within their team and the wider organisation. Actively contributes to the promotion of equal opportunity and non-discrimination in the workplace.
• Actively identifies personal training and development needs, and proactively contributes to maintaining up to date knowledge, skills and abilities.
• Displays a commitment to personal safety and that of their colleagues, to ensure a safe and healthy work environment, through the identification, removal and reduction of workplace hazards and risks.

WHY WORK FOR US?

At Dye & Durham we strive to be visionaries! As a leader in our field, we ensure our employees are ready for the next challenge in their journey with us by offering internal and external training opportunities. We offer competitive salaries and a whole host of benefits including healthcare, pension, company discounts, wellness programs, and paid days off to move house or volunteer for your favourite charity.

WHAT NEXT?

Hit apply and your application will be reviewed by our talent acquisition team who will contact you directly.

Please note that this position is subject to security checks.

Dye & Durham is an equal opportunity employer. We provide opportunities without regard to race, colour, religion, sexual orientations, gender identity, national origin, marital or family status, disability status or other applicable legally protected characteristics.