Location: Hybrid from Bradford with occasional travel to London
Job Type: Full-time, 37.5 per week
Salary: £90,000 per annum
As part of an exciting period of growth, we’re evolving our Technology function and creating new opportunities across the team. This is a rare opportunity to join as Head of Information Security, leading how we protect Anchor’s data, systems and services while enabling safe, sustainable growth.
In this senior leadership role, you’ll ensure security is built into how we design and deliver technology, not added later. You’ll provide clear, risk-based leadership across the organisation, helping us manage threats, strengthen resilience and maintain trust with our customers and colleagues.
What you’ll be doing
* Define and lead a clear, risk-based information security strategy aligned to organisational priorities
* Establish and oversee security governance, controls and assurance to manage risk and support delivery at pace
* Lead incident response and resilience planning, ensuring the organisation is prepared to respond and recover effectively
* Provide expert guidance on secure architecture across cloud, data, identity and application design
* Act as a senior advisor to executives and governance forums, shaping risk, investment and security decisions
What you’ll bring
* Significant experience leading an information security function within a complex organisation
* Proven ability to influence senior stakeholders and translate technical risk into clear business decisions
* Strong understanding of modern technology environments, including cloud, data, and identity-led security
* Experience defining security controls, governance frameworks, and assurance approaches
* Strong leadership capability, with experience building and developing high-performing teams
* A background in hands-on information security, with progression into senior leadership and the ability to bridge technical delivery and strategic direction
Desirable
* Experience working with recognised frameworks such as ISO 27001, NIST or equivalent
* Experience managing third-party and supplier security risk
* Experience operating within regulated or multi-stakeholder environments
* Relevant certifications such as CISSP, CISM, CCSP or equivalent