{"job":{"jobId":2423394,"fk_accountId":null,"fk_organizationId":588,"fk_adminAccountId":null,"title":"Director, Cyber Security","description":"\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\"><strong>Computing and Information Services</strong></p>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\"><strong>Grade 10:</strong> - Competitive salary based on our Senior Pay Scales (starting at £65,575 and going considerably higher based on experience)\nOpen-Ended/Permanent - Full Time\n<strong>Contracted Hours per Week: </strong>35\n<strong>Closing Date: </strong>24-Feb-2022, 7:59:00 AM</p>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\"><b>Durham University</b></p>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\">Durham University is one of the world's top universities with strengths across the Arts and Humanities, Sciences and Social Sciences. We are home to some of the most talented scholars and researchers from around the world who are tackling global issues and making a difference to people's lives.</p>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\">The University sits in a beautiful historic city where it shares ownership of a UNESCO World Heritage Site with Durham Cathedral, the greatest Romanesque building in Western Europe. A collegiate University, Durham recruits outstanding students from across the world and offers an unmatched wider student experience.</p>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\">Durham University seeks to promote and maintain an inclusive and supportive environment for work and study that assists all members of our University community to reach their full potential. Diversity brings strength and we welcome applications from across the international, national and regional communities that we work with and serve.</p>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\"><strong>It is expected that all staff within the University:</strong></p>\n\n\n<ul>\n<li>Contribute to our learning culture by engaging in mentoring, training and coaching.</li>\n<li>Positively contribute to fostering a collegial environment; as well as demonstrating commitment to equality, diversity and inclusion.</li>\n<li>Have due regard to Health and Safety requirements appropriate to grade and role</li>\n</ul>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\"><b>The Department and role purpose</b></p>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\">The Computing and Information Services (CIS) has an annual operational budget in the order of £10m, multi-million pound programmes of change within year, and approximately 185 staff. The Senior Leadership Team report directly to the Chief Information Officer (CIO) with the following portfolios: Strategy and Change; Operations; and Information Systems. CIS provide academic, teaching and administrative services across the organisation that underpin the day-to-day activities of the whole organisation.</p>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\">Recent infrastructure improvements include investment in a new network backbone, including new cable runs throughout the city to all of the Universities core buildings, network virtualisation, new scalable user facing storage, and a new hosting environment. Corresponding business led investment also continues to be made with a new web programme, training platform, student relationship management system, investment in research administration, and maximising the breadth of opportunities available to the University through Office365, alongside numerous other important initiatives. Investment is aligned to the University’s Digital strategy which seeks to provide a clear vision for how digital services can be an enabler to the overall University strategy and objectives.</p>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\">CIS is a friendly, but demanding department, where much is expected and can be achieved by competent, self-motivated individuals who are demonstrable in their team work ability.</p>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\">This post aligns to the University’s Digital Strategy, one theme of which is to improve University wide cyber security and working practices. This covers IT services delivered through the central CIS department, but also a requirement to work with internal IT providers in academic departments, professional services and research institutes to provide assurance that University wide cyber controls are effective. The post holder will be an experienced cyber security expert and manager and will lead the evolution and delivery of the Information and Cyber Security Strategy whilst having responsibility for the dynamic cyber security team. The post holder will be a member of the CIS Senior Leadership Team and will contribute to the overall delivery of the IT services provided by the department. They will need to foster close working relationships with the Information Governance directorate and the University Data Protection Officer. The role is based at the Durham University campus with hybrid working available (currently being piloted across professional services).</p>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\"><b>Core responsibilities:</b></p>\n\n\n<ul>\n<li>Provide professional and strategic leadership for cyber security along with the wider operations of the CIS team with accountability for the development and delivery of business plans and outputs.</li>\n<li>Have a substantial impact on departmental direction, strategy and objectives and the wider University’s cyber security strategy and posture.</li>\n<li>Contribute to strategic planning and influence the development of departmental and University goals.</li>\n<li>Lead, direct and manage the interrelationship of a team of managers and / or highly qualified professionals across the area of responsibility.</li>\n<li>Review and address cyber security performance and make a significant impact upon longer-term improvements typically within a one year timescale. Escalating risks to the CIO and SIRO as appropriate.</li>\n<li>Lead through appropriate consultation or negotiations, organisational changes to tackle major new issues and situations relating to cyber security.</li>\n<li>Utilise problem solving skills to implement robust solutions to department / service issues.</li>\n<li>Develop workforce plans and identify talent priorities to ensure the recruitment and retention of highly competent and professional staff.</li>\n<li>Lead or contribute to internal and external business meetings, working groups and committees at departmental or functional service level to influence governance, policy and standards for the service.</li>\n<li>Be accountable for the budget within cyber security and directing key investments in this area.</li>\n<li>Influence and shape the available resources as appropriate to meet the current and future needs of the University.</li>\n<li>Deputise for the CIO and senior managers where required.</li>\n</ul>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\"><u><b>Role responsibilities:</b></u></p>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\"><b>Analysis & Reporting</b></p>\n\n\n<ul>\n<li>Explore ways of improving efficiency and effectiveness and promote improvements in value for money.</li>\n<li>Monitor performance over time through Key Performance Indicators and cyber security dashboards and identify areas of improvement.</li>\n<li>Write reports, business cases, and papers as required for institutional governance bodies.</li>\n</ul>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\"><b>Planning & Organising</b></p>\n\n\n<ul>\n<li>Lead IT cyber security across the University, managing the risk from internal and external threats at both strategic and operational levels related to the organisational risk appetite.</li>\n<li>Align information and cyber security services with legislation and University security requirements.</li>\n<li>Develop and lead the implementation of strategies, including the Information and Cyber Security strategy, along with the development of plans for the area of responsibility, or specialism.</li>\n<li>Contribute to the development and delivery of overall departmental and technology strategy and policy, providing a future vision of technology and systems.</li>\n<li>Lead projects and initiatives which have significant resources and impact.</li>\n<li>Forward plan over a significant timescale (typically up to one year) including establishing departmental or service priorities.</li>\n<li>Develop, maintain and enhance a security management framework and all related policies and processes. Provide assurance that regulatory and professional standards, along with internal policies and processes, are being met.</li>\n<li>Be responsible for providing advice and support on adverse event investigations, ensure the independent review of incidents, identifying the root cause and ensure that appropriate corrective actions are developed, actioned and monitored.</li>\n</ul>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\"><b>Finance/Resource Management</b></p>\n\n\n<ul>\n<li>Influence the size, shape and skill set of the cyber security team in order to meet current and future needs.</li>\n<li>Undertake and ensure financial plans are developed and that services operate effectively within budget for the department/team.</li>\n<li>Explore ways of improving efficiency and effectiveness and promote value for money.</li>\n</ul>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\"><b>Customer Service & Liaison</b></p>\n\n\n<ul>\n<li>Foster robust governance and assurance across the University, and third-party organisations for cyber security.</li>\n<li>Maintain clear and effective operational management to deliver agreed customer services throughout CIS and the wider University.</li>\n<li>Seek out feedback about area of responsibility.</li>\n<li>Lead through appropriate consultation or negotiations, organisational changes to tackle major new issues and situations. </li>\n<li>Work with senior colleagues from all areas of the University, with committees and external bodies, providing high level advice.</li>\n<li>Represent the University externally in sector groups in consultations and negotiations.</li>\n</ul>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\"><b>People Management</b></p>\n\n\n<ul>\n<li>Lead, manage and develop staff in a major departmental area or service grouping, developing and raising performance through mentoring and coaching.</li>\n<li>Motivate, assess and reward of employees as required under University policy.</li>\n</ul>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\"><b>Continuous Improvement</b></p>\n\n\n<ul>\n<li>Undertake continuous review of departmental quality and of external benchmarks to promote the best possible service.</li>\n</ul>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\"><b>Communication</b></p>\n\n\n<ul>\n<li>Undertake day to day interaction with people of any level, within or outside of the organisation. Increase awareness of cyber security issues, risks and responsibilities across the University</li>\n</ul>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\">Any other reasonable duties as required.</p>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\"><b>Specific role requirements</b></p>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\">There will be a requirement to work out of hours during periods of increased threat or during a major incident.</p>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\"><b>Recruiting to this post</b></p>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\">In order to progress to the assessment stage of the recruitment process, candidates must evidence each of the essential criteria required for the role in the person specification above. It will be at the discretion of the recruiting panel as to whether they will also consider the desirable criteria but we would urge candidates to provide evidence for all criteria.</p>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\">Please note that some criteria will only be considered for those candidates who proceed to the assessment stage.</p>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\">Candidates must provide suitable evidence to satisfy the panel that they meet the requirements.</p>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\"><b>Please ensure that you complete all of the criteria and submit the grid above or your application cannot proceed to the next stage</b></p>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\"><u><b>How to apply</b></u></p>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\">We prefer to receive applications online.</p>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\">Please note that in submitting your application Durham University will be processing your data. We would ask you to consider the relevant University Privacy Statement <a data-mz=\"\" href=\"https://www.dur.ac.uk/ig/dp/privacy/pnjobapplicants/\" rel=\"no-follow\">https://www.dur.ac.uk/ig/dp/privacy/pnjobapplicants/</a> which provides information on the collation, storing and use of data.</p>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\"><b>What you are required to submit</b></p>\n\n\n<ol>\n<li>A CV;</li>\n<li>A covering letter which fully details your experience, strengths and potential in the requirements set out above and the person specification.</li>\n</ol>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\"><b>Please ensure that you submit all documentation listed above or your application cannot proceed to the next stage.</b></p>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\"><u><b>Contact details</b></u></p>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\">For further information please contact John Hemingway, Chief Information Officer at <a data-mz=\"\" href=\"mailto:john.hemingway@durham.ac.uk\" rel=\"no-follow\">john.hemingway@durham.ac.uk</a>.</p>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\">At Durham University, our aim is to create an open and inclusive environment where everyone can reach their full potential and believe our staff should reflect the diversity of the global community in which we work. We welcome and encourage applications from members of groups who are under-represented in our work force including people with disabilities, women and black, Asian and minority ethnic communities.</p>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\"><b><i>We will notify you on the status of your application at various points throughout the selection process, via automated emails from our e-recruitment system. Please check your spam/junk folder periodically to ensure you receive all emails</i></b></p>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\"><strong>Essential</strong></p>\n\n\n<ol>\n<li>Excellent oral and written communication skills and the ability to develop effective working relationships, both internally and externally to influence shareholders.</li>\n<li>Five GCSE’s at least Grade C or level four (or equivalent) including English Language and Mathematics (or equivalent experience).</li>\n<li>Educated to degree level (or equivalent experience).</li>\n<li>Professional practitioner with specialist knowledge and expertise (such as CISSP, CISM or CRISC and/or formal training in information security standards and best practice (e.g. ISO 27001/2/4/5 or equivalent experience) applied to leading an organisations cyber security operations </li>\n<li>Continuing professional development required to maintain professional recognition.</li>\n<li>Extensive experience of operating at a strategic / expert level for a sustained period of time within IT cyber security. With well-developed knowledge of systems/services for own area and across functions and how they relate to the University Strategy.</li>\n<li>Ability to contribute to planning at operational and strategic levels, anticipating change due to changes in the economic, social and governmental and/or technological environment. Responding with innovative solutions and practical implementations for change.</li>\n<li>Extensive knowledge and experience of ensuring compliance with regulatory and organisational policy and guidelines. Applying information and cyber security legislation to organisational policies and procedures</li>\n<li>Proven track record of running investigations and forensics to learn from previous experiences.</li>\n<li>Proven track record of developing and maintaining organisational wide cyber security governance processes and controls, identifying early areas of concern.</li>\n<li>Experience of managing and controlling substantial budget/resources/funding and an understanding of financial management procedures.</li>\n<li>Track record of cross-functional management and development experience and/or an enhanced management qualification applied across a large service team or teams.</li>\n</ol>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\"><strong>Desirable</strong></p>\n\n\n<ol>\n<li>Post graduate qualification such as a Masters degree (or equivalent experience).</li>\n<li>Awareness and understanding of the activities, objectives and strategic direction of the University, both current and future</li>\n</ol>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\"><strong>Interviews will take place on Monday 21 March 2022.</strong></p>\n\n\n<p style=\"margin-bottom: 20px; font-family: san-serif;\"><strong>DBS Requirement: </strong>Not Applicable.</p>\n\n\n","pdfUrl1":null,"location":"Durham, United Kingdom","location1":"유럽","location2":null,"location3":null,"type":"1","applyUrl":"https://durham.taleo.net/careersection/du_ext/jobdetail.ftl?job=22000144&tz=GMT%2B08%3A00&tzname=Asia%2FManila","fileUrl1":null,"fileUrl2":null,"fileUrl3":null,"fileUrl4":null,"fileUrl5":null,"fileUrl6":null,"fileUrl7":null,"workingHour":"Full Time","contractType":"Permanent","salary":"£65,575 and going considerably higher based o","original_id":"UNI|280860","original_domain":"timeshighereducation.com","original_url":"https://www.timeshighereducation.com/unijobs/listing/280860","original_isPremium":null,"closeType":1,"closedAt":"2022-02-24T00:00:00.000Z","requireEducation":38,"managerTel":"","managerFax":null,"managerEmail":"john.hemingway@durham.ac.uk","managerName":"DURHAM UNIVERSITY","managerPhone":null,"managerAddress":"Durham, United Kingdom","log_hit":4,"log_like":0,"publishState":1,"organizationName":null,"organizationName_en":null,"organizationName_alt":null,"del_yn":"N","createdAt":"2022-02-10T19:22:21.000Z","updatedAt":"2022-02-10T19:22:21.000Z"},"organization":{"organizationId":588,"lv1Id":null,"lv2Id":null,"name":"Durham University","name_en":"Durham University","name_alt":null,"introduction":"<p>Durham’s University College was founded in 1832 before it was granted a Royal Charter in 1837 by King William IV, making it Durham University.</p><p>It is a Russell Group institution with a staff count of over 3,000, more than 30 per cent of whom are of non-UK origin. Symbolic of its international approach, the university welcomes over 4,500 international students from 156 countries worldwide.</p><p> </p><p>Durham University attracts around 17,500 students of all levels. Roughly 21 per cent of its student body are of non-UK origin, and with staff and students combined, around 150 countries and nationalities are represented.</p><p> </p><p>The university is made up of three faculties: arts and humanities, science and social science, and health. It comprises 16 colleges with 25 departments and schools that come together to offer over 200 undergraduate and 130 postgraduate courses, as well as research programmes.</p><p> </p><p>The Durham University estate is spread across two campuses and spans around 227 hectares of land. The estate is home to part of a UNESCO world heritage site (in recognition of Durham’s historical and architectural importance) and comprises several listed buildings,</p><p>The main campus is in the city of Durham, where 14 of the 16 colleges and most of the academic schools are located. The Queen’s campus is in the town of Stockton-on-Tees, around 30 miles from Durham, which was established in 1992 and is located on the river Tees.</p><p> </p><p>Sport is a key aspect of student life at Durham where the majority of students regularly participate in one or more sports.</p><p>The Durham University alumni community is known as Dunelm and include the England cricketer Andrew Strauss, founder of the Eden Project, Tim Smit, and the journalist Sir Harold Evans.</p>","logoImg":"","logoImgSquare":"https://s3.ap-northeast-2.amazonaws.com/jobs.ac.kr/dev/images/uni_profile_69451_846972594590.jpg","homepageUrl":"https://www.dur.ac.uk/","infoUrl":"https://www.timeshighereducation.com/world-university-rankings/durham-university","country":"GB","state":"Durham and Stockton-","location":"유럽","address":"Stockton Road, Durham, County Durham, DH1 3LE, United Kingdom","phoneNumber":"+44 191 334 2000","faxNumber":"","type":1,"univType1":"대학","univType2":"대학교","univType3":"","univType4":"본교","establishedAt":"1832-01-28T00:00:00.000Z","count_majors":null,"count_students":null,"meta_competitiveness":"","publishState":1,"updatedAt":"2020-03-13T12:04:52.000Z","createdAt":"2020-03-04T20:13:07.000Z","default_1_bannerImage":"https://s3.ap-northeast-2.amazonaws.com/jobs.ac.kr/dev/images/platinum_DURHAM_637271578745.png","default_1_bannerImageMobile":"https://s3.ap-northeast-2.amazonaws.com/jobs.ac.kr/dev/images/platinum_m_DURHAM_1572599223688.png","default_2_bannerImage":null,"default_2_bannerImageMobile":null,"default_3_bannerImage":"https://s3.ap-northeast-2.amazonaws.com/jobs.ac.kr/dev/images/DURHAM_605476688684.jpg","default_3_bannerImageMobile":null}}