Job Description

What you'll be doing?

Supporting the business and our divisional offices, our Head Office functions cover all departments from our Executive Board through to our support functions such as Group Design and Technical, HR,Health and Safety, IT, Sales and Marketing, Commercial, Procurement, Group Finance, Corporate Affairs, as well as Legal and Company Secretariat. We also have a specialised function - Barratt Partnerships.



Reporting to the Director of Information Security, you will be responsible for supporting the delivery of information security strategy and operational controls for the group. This includes functional leadership of Security Operations, Security incident Response, Security Tooling and Security Architecture. The role holder will own the process for managing user awareness and advocacy and will be a key contributor of strategy, not only for the functional areas described above, but for all areas in-scope for Information Security at Barratt Redrow.






You will be expected to:
Own and manage Security Operations, Security Tooling, User Awareness and Threat and Vulnerability Management, including Threat Intelligence and Threat Hunting. Drive the performance of the information security area, challenging business strategy, engaging with business stakeholders to enable a class leading security posture and strategy. Line management of Information Security area, which comprises of a Security Operations team (and an extended third-party presence), a Security Architect and Information Security Analysts responsible for Security Tooling and User Awareness. Management of the response to all Information Security related incidents and events across the group, leveraging the Security Operations team and associated third parties to deliver against the risk with as little impact as possible. Responsible for the delivery of co-ordinated controls in the Cyber space, including managing the operation of all Information Security toolsets Responsible for the definition and maintenance of cyber reporting to all identified stakeholders, providing meaningful KRI and KPI information on a timely basis to aid decision making. Drive engagement across the business with Information Security, move us from a 'policing' to 'business enabling' culture and reputation. This will require engagement with executive and SLT stakeholders across the business. Management of the response to Information Security related risk across the group. Working closely with Group Internal Audit and external third parties for internal audits, external audits, and maturity assessments. Responsibility for ensuring maintenance or increase of NIST score (to agreed targets) for control areas related to scope. Assessment and implementation of any other appropriate external benchmarking/standards such as CE+. Provide a significant supporting role in the overall development, implementation and adoption of the Information Security Strategy and Information Security Management Systems (ISMS). This will include owning the forward strategy for the core capability areas that the role owns, including Security Operations, Threat and Vulnerability Management, User Awareness, Security Architecture and Security Tooling. Own relationships with a subset of senior leadership stakeholders, including regional and divisional Directors. Complete regular engagement to increase visibility and understanding of Information Security, and to take feedback from the business on security controls. Responsible for the management of vendors providing Information Security Tooling and services. Continuously update and manage a security awareness training program for all employees, contractors, and approved system users, and establish metrics to measure the effectiveness of this program. Ensuring Barratt's security posture is assessed and evaluated appropriately and that external parties are secure and in-line with our policy and procedures. Manage and contain security incidents and events to protect customer data, corporate assets, intellectual property, and financial data. Define, support in the implementation, and ensure continued adherence to the company's Access Control Policies. Deputise for the Director of Information Security in the event of unavailability

What you'll need?

To be successful in the role, we are looking for:
Experience of managing Cyber Security or Security Operations gained in a large, distributed company, preferably FTSE 100. Strong leadership qualities gained as a leader within an IT/Cyber function. Strong strategic capability, with the ability to balance the operational demand of a SecOps leadership role with the need to develop and maintain a 3-5 year strategic roadmap, which is fully integrated into the Security strategy and responsive to dependencies in IT and business strategy. Proven communication and stakeholder management skills at all levels, but particularly with business leadership, including a strong influencing / negotiating capability. Proven track record and experience in developing information security policies and procedures, as well as successfully executing programs in a dynamic and fast paced company. Track record of effective people development, strong people motivational skills and performance management. Proven ability to deliver an insightful and effective KRI / KPI suite. Proven experience of managing complex vendor management environments, particularly demonstrating an aptitude for managing both product and managed services. Experience of working across diverse industry sectors to bring a fresh insight and expertise. High energy, positive, resilient, and able to negotiate and influence at all levels. Able to embed a culture of continuous development across ITGCs/ITACs and information security defence. Close attention to detail. Strong interpersonal skills and able to give and receive challenge appropriately.

Our Company and Benefits

We've been nationally recognised as a 5 star housebuilder since 2010 for supplying high-quality homes for all generations. That's more than any other major housebuilder. It's because we combine the brightest minds, the latest technology, and a genuine commitment to putting customers first. We want the best people in the industry to help us shape the future of building. We have tailored opportunities for apprentices, graduates, experienced professionals and ex-Armed Forces personnel to come and help us stay one step ahead, and build the homes that Britain needs.



Barratt adopts a hybrid way of working which assumes that where roles allow, our office-based colleagues divide their time between working in the office, on our construction sites and sales offices, and working from home, as the role dictates. We recognise the many benefits that an effective hybrid working culture brings to both the Company and our colleagues.



We are building an organisation where anyone with drive and talent can pursue the career they want. We are building a culture where anyone, regardless of gender, race, age, sexuality, disability, background or any other characteristic, can progress and be proud to work for us.


As part of working for Barratt Redrow PLC and specifically for this role we offer:
Competitive Salary Competitive Bonus Scheme Private Medical Cover - Single Cover Annual Medical Health Assessment 26 days' holiday (increase by 1 day for every 3 years' continuous service up to 29 days) Choice of Flexible Benefits * Enhanced Family Friendly Policies