Security Improvement Specialist

Why we're hiring:

WPP IT provides IT services for WPP, the world’s largest communications services group. As a creative transformation company, WPP is helping its clients transform the future through extraordinary work. WPP IT is an integral part of that journey and we are proud to provide technology for some of the world’s most creative brands.

The Cyber Security Improvement Specialist has end to end accountability for the management of one or more Cyber Security improvement initiatives in line with cyber security strategy. Through completion of these the role holder will further improve the organisations detective, protective and responsive cyber security capabilities. By effectively managing cyber security improvement initiatives the role holder will strengthen the Organisations security posture, increase its security maturity, and enhance its security capabilities.

The Cyber Security Improvement Specialist will manage engagement with internal and external stakeholders, suppliers and the wider Cyber Security Team.

What you'll be doing:

Establishing Initiatives

• Scope: Defining and agreeing scope of initiatives using established tools and techniques
• Stakeholders: Identifying and engaging all stakeholders and developing and implementing an appropriate communication plan
• Investment: Leading in the securing of investment through provision of estimates to support Business Case including resources, time, costs, risks, issues, dependencies and assumptions
• Resources: Defining the resources required and sourcing; directly line managing resources as required
• Mobilisation: Production and distribution of all key mobilisation artefacts such as RACI matrices, Scoping Documents, collaboration tools, running workshops, implementing governance
• Working collaboratively with all ley stakeholders accountable for all the relevant business case documents

Plan/Monitor/Control

• Leadership of initiative teams to deliver against the agreed metrics for time, cost and quality
• Manage the initiatives in line agreed methodology
• Act as Systems Integrator, bringing together all internal and external supplier deliverables to ensure delivery of a complete end-to-end solution that is assured against the current agreed specification
• Create an agreed schedule baseline and maintain under strict change control
• Establish and maintain unambiguous controls (Constraints; Actions; Risks; Dependencies; Deliverables; Decisions; Issues; Change; Assumptions)
• Establish and operate Financial control
• Ongoing proactive management of stakeholders and communication
• Agree span of control (management by exception/ tolerances)
• Establish initiative meeting cadence
• Establish initiative reporting processes
• Agree formal initiatives gateways and corporate governance obligations
• Comply with data and cyber security obligations
• Ensure Business Change activities are in place appropriate to the initiatives

Closing

• Establish and execute an agreed transition plan with BAU teams
• Controlled closure (finances; user acceptance; service acceptance; gateway; review artefacts)

Compliance

• Act in accordance will all current and relevant WPP policies

Team Management

• Ability to build high performing initiative teams

Deputise for the Cyber Security Improvement Lead as required

Help ensure that WPP IT meets all local legislative and regulatory requirements

• APMP, Prince 2, Prince 2 Agile or similar certification or appropriate level of experience
• Comprehensive knowledge about vulnerability and security policies such as ISO standards

• Experience of selection, negotiation and procurement of cyber security systems and tools;
• Proven experience of deployment and configuration of cyber security systems and tooling within large and complex organisations
• Experience of managing large scale and complex cyber security initiatives including SIEM and SOC
• Demonstrable experience of successful management of internal and external stakeholders
• Significant experience of facilitating cyber security recruitment campaigns
• Experience of defining, collating, and reporting on key cyber security metrics
• Experience of working closely with multinational teams Able to relate to their roles and ensure that the Security Operations team is seamlessly integrated in process and technology terms

Who you are: