Head of Information Security

Head of Information Security

London (Hybrid – 2–3 days onsite)

£90,000 - £95,000 + Generous bonus & benefits

We’re looking for an experienced Head of Information Security to lead and mature our cyber and information security capability at a strategic level. This is a senior leadership role for someone already operating at Head of InfoSec level, with the confidence to shape strategy, influence stakeholders, and deliver pragmatic security outcomes in a growing organisation.

The Role

As Head of Information Security, you will own the organisation’s information and cyber security posture end‑to‑end. You’ll assess current maturity, define a clear security strategy, and lead its implementation across people, process, and technology. Working closely with senior leadership, small internal teams, and trusted third‑party vendors, you’ll ensure security is embedded, proportionate, and aligned to business objectives.

Key Responsibilities

Lead cybersecurity maturity assessments and define a clear, actionable roadmap for improvement

Develop, implement, and continuously improve the Information Security strategy, policies, and standards

Act as the senior subject matter expert for information and cyber security across the organisation

Manage and optimise third‑party security relationships, including suppliers, MSPs, and assurance partners

Oversee security governance, risk management, and compliance activities

Provide leadership and direction to a small internal team, supported by external vendors

Engage with senior stakeholders to translate security risk into clear business impact and priorities

Support audits, certifications, and assurance activities (e.g. ISO 27001, Cyber Essentials Plus)

About You

You’ll be a confident, hands‑on security leader who is comfortable operating at both strategic and operational levels.

Essential experience:

Currently operating (or recently operated) at Head of Information Security level

Strong background in cybersecurity, strategy development, and delivery

Experience managing small teams and coordinating work with external security vendors

Proven track record managing third‑party security and supplier risk

Strong stakeholder management skills, with the ability to influence at senior level

ISO 27001 certification experience and/or Cyber Essentials Plus

Broad security background rather than a narrow technical specialism

Experience in professional services environments advantageous

Artificial Intelligence in Security - How to utilise it and how to protect against it

Why Join?

Senior leadership role with genuine influence over security direction

Hybrid working model with flexibility

Competitive salary of up to £95,000 plus a generous bonus and benefits package

Opportunity to shape and mature a security function rather than simply maintain one

This is a fantastic opportunity with a truly awesome organisation and an opportunity not to be missed