Overview
The role of Interim Virtual Chief Information Security Officer (vCISO) is a crucial part-time contract position aimed at enhancing the cyber security, risk, and compliance functions of a leading private healthcare provider. The contractor will collaborate closely with senior leadership to fortify the organization’s security measures in a complex regulatory landscape, balancing strategic oversight with hands-on technical implementation.
Responsibilities
- Lead the development of the cyber security strategy and governance framework.
- Drive the Cyber Essentials certification process and ensure ongoing compliance.
- Manage risk assessments, audits, and regulatory requirements.
- Ensure the implementation of robust data protection and information security practices.
- Support technical teams in the hands-on implementation of security controls.
- Act as the senior security advisor to various stakeholders across the organization.
- Contribute to building security capability from the ground up in scale-up or greenfield environments.
- Manage and mentor a small team to ensure effective delivery of security initiatives.
Requirements
- Proven experience as a CISO, vCISO, or Head of Security.
- Strong knowledge of risk management, compliance, and governance frameworks.
- Experience in delivering Cyber Essentials and Cyber Essentials Plus certifications.
- Familiarity with ISO 27001 and global risk management and compliance standards.
- Hands-on experience in implementing security controls and frameworks.
- Deep understanding of data security in complex and regulated environments, such as healthcare or fintech.
- Ability to operate strategically and tactically in a lean business context.
- Excellent stakeholder management and communication skills.