Chief Information Security Officer

We are currently recruiting for a Chief Information Security Officer (CISO), reporting to the Chief Technology Officer, to be responsible for ensuring the security, privacy, and compliance of Tunstall’s operations on a global scale.

But there’s more to this than just the ‘day job’. As a Group we’re embarking on an exciting period of transformation. We want to fundamentally transform the systems, processes, people, and technology across our business, to achieve measurable and sustainable improvements. You’ll play a vital part in contributing to this transformation, helping to shape information and cyber security at Tunstall globally.

This role could work on a hybrid basis from any of our main hubs - Manchester city centre, Malmo, or Madrid.

What will you be doing in this role?

As our CISO, you will safeguard the company’s internal infrastructure, but also influence and contribute to the security and resilience of our operations, assets, and reputation. This role is not just the shaping of strategy but the execution and hands-on delivery of this strategy. This is a very visible role, and you will have a chance to make a real difference to Tunstall and our all-important customers. You will be responsible for driving security change and transformation across Tunstall, by helping to create and build a comprehensive cyber security and information security strategy that aligns with business objectives and play a pivotal role in ensuring the security of our SaaS products.

The identification, assessment, and prioritisation of security risks associated with both internal and external factors in line with business objectives and ensuring the compliance with all relevant laws and regulations related to security, including GDPR (and other relevant data protection regulations), is vital to the success of this role.

You will lead, inspire, and mentor the security and compliance teams globally, fostering a culture of continuous improvement, innovation, and excellence, as well as promoting security awareness throughout Tunstall, upskilling, and educating colleagues as required.

The Ideal candidate:

To be successful in this role you will have leadership experience in cyber and information security from a brownfield site, with an in-depth understanding of all the key cyber and information security domains. You will have experience of liaising with, and influencing senior stakeholders around key business objectives, most effective approach, and allocation of budgets, with a proven track record of driving security change and transformation. We are a cost-conscious business, so the ability to work to a budget, and deliver return on investment (ROI) through the effective and efficient utilisation of security tooling and available resources is vital to success.

You will be able to demonstrate previous success in shaping, building, executing, and implementing a comprehensive international cyber security and information security strategy. You will be pragmatic, with a commercial approach, and significant experience of reviewing and assessing differing approaches and security tools, able to demonstrate clear rationale behind your decisions.

With excellent communication skills, both verbal and written, you will have the ability to convey and ensure an understanding of complex messages to colleagues at all levels. As a proven and collaborative leader, with a strong teamwork ethic, and can-do attitude, you will be happy to be both strategic and hands on, used to working in a fast-moving organisation, able to create structure and clarity from ambiguity.

In addition, you will have a strong knowledge of software as a service (SaaS) products and on-premise technical solutions, with experience of delivering security solutions for SaaS products. Experience with a hardware provider / manufacturer as well would be highly desirable.

What we offer:

• Competitive salary,
• Car allowance,
• Bonus,
• Family private health,
• Hybrid working,
• 25 days holiday + bank holidays,
• Holiday purchase scheme,
• Contributory pension,
• Volunteer day to support a cause you are passionate about,
• Car benefit scheme,
• Dedicated 24/7 employee benefits platform ‘Verlingue’ that include things like: free eye tests, retail discounts,
• EAP WeCare service - including a 24/7 online GP and mental health counselling service,
• Boost your learning and growth through access to a Talent Library with over 800 courses, and access to Udemy or O’Reilly learning platforms,
• A warm and welcoming team environment and a chance to build a rewarding career.

Some of your key tasks will be…

• Develop, execute, deliver, and provide support on a comprehensive cybersecurity and information security strategy that aligns with business objectives,
• Lead, mentor, and oversee a small global team responsible for security operations, incident response, and threat detection, fostering a culture of continuous improvement, innovation, and excellence,
• Collaborate with the Group IT team to ensure the organisation is protected against cyber threats and maintain an effective incident response plan,
• Play a pivotal role in ensuring the security of Tunstall’s SaaS products,
• Identify, review, select, and manage our relationships with appropriate third-party security partners for our products,
• Work closely with product development teams to embed security principles into the product lifecycle,
• Ensure appropriate security assessments, penetration testing, and code reviews are conducted,
• Ensure compliance with all relevant laws and regulations related to security, including GDPR, if applicable,
• Stay informed about evolving cybersecurity regulations, standards, and best practices,
• Collaborate with legal and compliance teams to address security and privacy concerns,
• Identify, assess, and prioritise security risks associated with both internal and external factors,
• Develop and maintain a risk management framework to mitigate risks effectively,
• Establish and enhance incident response plans and conduct drills,
• Evaluate and manage security risks associated with third-party vendors and partners, including those providing security solutions,
• Establish robust vendor security assessment processes and due diligence procedures to ensure the security of third-party products and services,
• Collaborate with external security vendors and consultants to enhance our security posture and stay current with industry best practices,
• Promote a culture of security awareness throughout Tunstall, upskilling and educating colleagues as required,
• Develop and track key performance indicators (KPIs) and metrics to measure the effectiveness of security initiatives,
• Drive continuous improvement in security strategies and practices globally.

Key skills and experience:

• Bachelor’s degree in computer science, Information Security, or a related field, or equivalent experience,
• Proven experience in cyber security and information security, in a leadership role,
• Strong knowledge of SaaS and on-premise technical solutions,
• Proven experience in delivering security solutions for SaaS products,
• Excellent understanding of compliance standards and regulations relevant to the industry,
• Relevant certifications such as CISSP, CISM, or CISA are a plus,
• Strong communication skills, both verbal and written,
• Excellent leadership skills (ideally of a global team),
• A collaborative individual, used to working cross functionally, able to influence and guide individuals,
• Proven experience, and happy to be, both strategic and hands-on in approach,
• Demonstrable experience of successfully driving change and transformation within a business.

If you are not sure if you have the relevant skills or experience, then please apply (only takes a few minutes) and let our team review and come back to you.

A bit about us:

Tunstall is a market-leading health and care technology provider.

We’re passionate about ensuring our team reflects the brilliant and unique qualities of the people and communities we support. Our incredible team of more than 3,000 colleagues provides life saving and life changing technology and services to millions of people in 18 different countries.

At Tunstall you’ll find a place where you’re valued and celebrated for being yourself. We empower our people to deliver the very best teamwork, innovation and thought leadership by creating an environment where we champion diversity and inclusion. We demonstrate our commitment to diversity and inclusion at each step. From our open, fair, and transparent recruitment processes, through to the many development and career growth opportunities we provide.

Each Tunstall colleague has a superpower… they’re unique. No one else is them, and we think that’s special. Come and join our mission and be part of our team, our One Tunstall team.