Cyber Security Manager (flexible location +/- 3hrs GMT)Edit

The Cyber Security Manager will work directly with the IT Manager to cultivate and lead the Cyber Security function within the team. The role will look to analyse and protect against the risks and impact of security breaches of our infrastructure and information. You will act as the subject matter expert for cyber security.

This is a new role, and the short-term focus will be on establishing the Cyber Security function, including its strategy. You will help define policies, analyse risks, and provide advice on mitigating them. Another aspect will be to implement protection tools and training across the workforce. You will be working with the IT Team to assess, review and align on best security practices.

This role requires someone with a proven strength of understanding of the evolving cybersecurity threat landscape. You will be able to apply this to the Strategic Communications environment. Effective communication with multiple cultures and people at all levels will be crucial in this role.

Experience with protecting remote workforces, balancing enablement with proactive threat prevention, will be key. Experience with input to policies, especially BYOD and cloud-environments, is an advantage.

After the cyber security function has been established, a continual alignment review cycle will be undertaken and risk analysis with the IT Manager will be carried out. Identifying and communicating change to the workforce and senior management regarding the threat landscape and protection trends will form part of this role in the future.

Key responsibilities

• Define and implement a cyber security strategy in alignment with the wider IT Strategy
• Source and onboard a third-party cyber security specialist service provider
• Work with the IT Manager in forming policies and processes, ensuring security is considered at all appropriate times.
• Perform risk analysis and mitigation planning review of the existing infrastructure (and regularly thereafter)
• Review current working practices, making security improvements where necessary
• Organise an annual security audit and reporting/actioning the findings.
• Create training material and present it to the workforce.
• Implement “quick-win” solutions where identified
• Perform continual alignment reviews of the cyber security function against workforce enablement, risk mitigation and budget.
• Provide solutions in alignment with ISO27001 to ensure compliance (certification may be required at a later stage).

Requirements

• Proven experience in managing a cyber security function
• Excellent knowledge of integrated cloud environments. Google Workspace experience is an advantage
• Risk analysis and mitigation experience
• Creative thinking and an analytical mind to apply to balancing security with other business requirements
• Creating and working with cyber security crisis response teams
• Strong understanding of cyber security best practices, particularly in alignment with remote working and BYOD environments
• Experience implementing solutions within the ISO27001 framework
• Strong time and priority management with a high level of independence combined with the ability to function cohesively as part of a team
• Excellent written and verbal communication in English, the ability to speak other languages is a plus
• Passionate about climate action with a genuine interest in the mission and values of the ECF
• The disposition to work generously with colleagues in a high-trust global community of peers
• The versatile and adaptable skills necessary to flourish in a fast-paced and wide-ranging work environment and work across phone/video conferencing and time zones
• A passion for excellence.

What we offer

• The unique opportunity to work as part of a highly dynamic, international group of individuals who combine their passion to make a difference with a rigorous and results-oriented approach to work
• A flexible work environment and a space to develop and challenge yourself
• A full-time position with a consultant or employment contract (subject to location) for 12 months, with a possible renewal after one year.

Location

Flexible location within +/- 3hrs GMT. This is a remote position. You must have the right to work in your location. We may have co-working spaces in some locations.