Head of Information Security
London Area / South East (Hybrid) | Permanent
Are you ready to define and lead the security strategy of a fast-growing, technology-driven organisation operating in a highly regulated, data-sensitive environment?
We’re partnering with an ambitious, scaling business seeking a Head of Information Security to take ownership of its global security and compliance capability. This is a rare opportunity to shape strategy, influence executive decision-making, and act as the authoritative voice on security across the organisation.
The Opportunity
This role sits at the intersection of strategy, governance, and hands-on leadership. You’ll be responsible for building, evolving, and embedding a best-in-class security posture while ensuring alignment with key industry standards.
You’ll work closely with senior leadership, customers, auditors, and technical teams, acting as both a trusted advisor and operational leader in an ever-evolving threat landscape.
Responsibilities
- Define and deliver the organisation’s information security strategy, aligned with business objectives
- Own and evolve the Information Security Management System
- Lead compliance and certification across key industry security standards (including ISO 27001, PCI-DSS and SOC 2)
- Act as the subject matter expert for all security and compliance matters internally and externally
- Identify capability gaps and implement pragmatic, scalable solutions
- Lead incident response, threat modelling, and vulnerability management end-to-end
- Oversee and optimise the security tooling landscape
- Partner with engineering teams to embed secure-by-design and DevSecOps practices
- Represent security in customer engagements, audits, and commercial discussions
- Manage third-party risk and vendor security assurance
What We’re Looking For
- Proven leadership experience in information security within regulated environments
- Deep expertise across recognised frameworks such as ISO 27001, PCI-DSS, NIST, and relevant regulations (e.g. GDPR)
- Strong track record of leading audits and achieving successful compliance outcomes
- Hands-on experience managing security incidents, vulnerability management, and threat mitigation
- Solid understanding of cloud security principles
- Ability to influence senior stakeholders and clearly communicate complex security concepts
- Experience embedding secure software development practices
- Relevant certifications such as CISSP, CISM, or CISA
Why This Role?
- Strategic, high-impact position with executive visibility
- Opportunity to shape and mature a security function in a growing business
- Work in a forward-thinking environment where security is a genuine priority
- Collaborative culture with strong cross-functional engagement
If you’re a security leader who thrives on ownership, influence, and building resilient systems in complex environments, this is an opportunity to make a meaningful impact.
Apply now or reach out for a confidential discussion.
…